Silverline: data and network isolation for cloud services

Authors:
Yogesh Mundada;Anirudh Ramachandran;Nick Feamster
Affiliations:
School of Computer Science, Georgia Tech;School of Computer Science, Georgia Tech;School of Computer Science, Georgia Tech
Venue:
HotCloud'11 Proceedings of the 3rd USENIX conference on Hot topics in cloud computing
Year:
2011

Citing 6
Cited 2

Terra: a virtual machine-based platform for trusted computing

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Making information flow explicit in HiStar

OSDI '06 Proceedings of the 7th USENIX Symposium on Operating Systems Design and Implementation - Volume 7
Information flow control for standard OS abstractions

Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles
NOX: towards an operating system for networks

ACM SIGCOMM Computer Communication Review
Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds

Proceedings of the 16th ACM conference on Computer and communications security
Neon: system support for derived data management

Proceedings of the 6th ACM SIGPLAN/SIGOPS international conference on Virtual execution environments

Exploiting split browsers for efficiently protecting user data

Proceedings of the 2012 ACM Workshop on Cloud computing security workshop
Auditing cloud management using information flow tracking

Proceedings of the seventh ACM workshop on Scalable trusted computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Although cloud computing service providers offer opportunities for improving the administration, reliability, and maintenance of hosted services, they also concentrate network resources and data in a small number of cloud service providers. The concentration of data and resources also entails various associated risks, including sharing the underlying infrastructure with unknown (and untrusted) tenants and relying on the availability and security of the underlying infrastructure itself. These security risks represent some of the most significant barriers to the adoption of cloud-based services. To begin tackling these risks, a cloud hosting infrastructure should provide strong guarantees for resource and data isolation. This paper examines data and network isolation problems with today's cloud hosting infrastructures and proposes SilverLine, a collection of techniques to improve data and network isolation for a cloud tenants' service.