Presentation is loading. Please wait.

Presentation is loading. Please wait.

Self-service Cloud Computing Presented by: Yu Bai (ybai181) Butt, S., Lagar-Cavilla, H. A., Srivastava, A., & Ganapathy, V. (2012, October). Self-service.

Published byElvin Thornton Modified over 9 years ago

Similar presentations

Presentation on theme: "Self-service Cloud Computing Presented by: Yu Bai (ybai181) Butt, S., Lagar-Cavilla, H. A., Srivastava, A., & Ganapathy, V. (2012, October). Self-service."— Presentation transcript:

1 Self-service Cloud Computing Presented by: Yu Bai (ybai181) Butt, S., Lagar-Cavilla, H. A., Srivastava, A., & Ganapathy, V. (2012, October). Self-service cloud computing. In Proceedings of the 2012 ACM conference on Computer and communications security (pp. 253-264). ACM.

2 What is a Self-service Cloud(SSC)? SSC is a new cloud computing model that improves client security and privacy, and gives clients the flexibility to deploy privileged services on their own VMs (Butt, 2012). A security framework of cloud that considers providers(amozon, google, ebay) and administrators(people who work at provider’s Lab or have access to it) as different roles(my point of view).

3 Framework of traditional cloud Virtual machine Microkernel(Fiasco.OC) HardwareHypervisorDom0VMs - Dom0, Hypervisor, and Hardware (three grey components) consist of trusted computing base(TCB). - Hypervisor directly control hardware and runs at the highest privilege level - Dom0 as a special VM used by administrators has the privileges to schedule, configure, control, monitor on other VMs.

4 Framework of SSC Virtual machine Microkernel(Fiasco.OC) Reducing the privilege of administrators - SDom0 can no longer spy on user domain. - SDom0 is out of TCB. SDom0(System Domain 0) SDomB(System Domain Builder) UDom0(User Domain 0) SD(Service Domain) MTSD(Mutually- trusted service Domain)

5 Background of Self-service Cloud(SSC) Cloud Layers -Software as a Service (SaaS) -Platform as a Service (PaaS) -Infrastructure as a Service (IaaS) Which kind of threats? -User-to-user threat -User-to-infrastructure threat -Provider-to-user threat

6 Reason behind SSC framework Provider-to-user threat -Clients want to protect their privacy and sensitive data, and -Providers value their reputation, but -Administrators could be malicious, driven by personal interest.

7 Appreciation Fine grained of analysis on roles - Recognize administrators are different from providers. - A feasible and delicate model to limit the power of administrators.

8 Limitation Lose the main advertised feature of cloud - administration free. -Clients need put more effort into non-functional part. -Suggested app store seems not plausible(need to trust third party software and seems no enough market requirement).

9 Limitation Practical security (Lampson, 2004) or shifting responsibility? -Looks like balancing the cost of protection and the risk of loss. But -Still need to trust providers, and there will still be somebody who has access to supervisor, hardware, i.e. TCB. -If providers cannot trust their administrators, should clients trust their own administrators? -Whatever clients have to trust some individuals. -Wouldn’t a Bell-La Padula confidentiality model be better ? Lampson, B. W. (2004). Computer security in the real world. Computer, 37(6), 37-46.

10 Question If security is really important, what would clients prefer SSC or their own servers? Can we come up a way someday to finally get rid off the problem caused by people in a security system?

11 Thank you! Yu Bai (ybai181)

Download ppt "Self-service Cloud Computing Presented by: Yu Bai (ybai181) Butt, S., Lagar-Cavilla, H. A., Srivastava, A., & Ganapathy, V. (2012, October). Self-service."

Similar presentations

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab
Prepared for [xxxx] – Commercial in Confidence connect transform protect A Cloudy Cyberspace? Tony Roadknight – Technical Architect.

Prepared for [xxxx] – Commercial in Confidence connect transform protect A Cloudy Cyberspace? Tony Roadknight – Technical Architect.
Virtualization and Cloud Computing. Definition Virtualization is the ability to run multiple operating systems on a single physical system and share the.

Virtualization and Cloud Computing. Definition Virtualization is the ability to run multiple operating systems on a single physical system and share the.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2011 Lecture 3 02/14/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 3 02/14/2010 Security and Privacy in Cloud Computing.
Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.

Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.
Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.

Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.
An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.

An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.
 Max Planck Institute for Software Systems Towards trusted cloud computing Nuno Santos, Krishna P. Gummadi, and Rodrigo Rodrigues MPI-SWS.

 Max Planck Institute for Software Systems Towards trusted cloud computing Nuno Santos, Krishna P. Gummadi, and Rodrigo Rodrigues MPI-SWS.
Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.

Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.

What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.
© 2010 VMware Inc. All rights reserved Confidential VMware Vision Jarod Martin Senior Solutions Engineer.

© 2010 VMware Inc. All rights reserved Confidential VMware Vision Jarod Martin Senior Solutions Engineer.
Virtual Machine approach to Security Gautam Prasad and Sudeep Pradhan 10/05/2010 CS 239 UCLA.

Virtual Machine approach to Security Gautam Prasad and Sudeep Pradhan 10/05/2010 CS 239 UCLA.
INTRODUCTION TO CLOUD COMPUTING CS 595 LECTURE 4.

INTRODUCTION TO CLOUD COMPUTING CS 595 LECTURE 4.
Presented by Sujit Tilak. Evolution of Client/Server Architecture Clients & Server on different computer systems Local Area Network for Server and Client.

Presented by Sujit Tilak. Evolution of Client/Server Architecture Clients & Server on different computer systems Local Area Network for Server and Client.
Cloud Usability Framework

Cloud Usability Framework
Be Smart, Use PwrSmart What Is The Cloud?. Where Did The Cloud Come From? We get the term “Cloud” from the early days of the internet where we drew a.

Be Smart, Use PwrSmart What Is The Cloud?. Where Did The Cloud Come From? We get the term “Cloud” from the early days of the internet where we drew a.
M.A.Doman 2011. Model for enabling the delivery of computing as a SERVICE.

M.A.Doman Model for enabling the delivery of computing as a SERVICE.
Plan Introduction What is Cloud Computing?

Plan Introduction What is Cloud Computing?
A Seminar on Securities In Cloud Computing Presented by Sanjib Kumar Raul Mtech(ICT) Roll-10IT61B09 IIT Kharagpur Under the supervision of Prof. Indranil.

A Seminar on Securities In Cloud Computing Presented by Sanjib Kumar Raul Mtech(ICT) Roll-10IT61B09 IIT Kharagpur Under the supervision of Prof. Indranil.

Similar presentations

Ads by Google