Trusted Launch of Virtual Machine Instances in Public IaaS Environments

Paladi, Nicolae and Gehrmann, Christian and Aslam, Mudassar and Morenius, Fredric Trusted Launch of Virtual Machine Instances in Public IaaS Environments. Lecture Notes in Computer Science . (In Press)

WarningThere is a more recent version of this item available.



Cloud computing and Infrastructure-as-a-Service (IaaS) are emerging and promising technologies, however their adoption is hampered by data security concerns. At the same time, Trusted Computing (TC) is experiencing an increasing interest as a security mechanism for IaaS. In this paper we present a protocol to ensure the launch of a virtual machine (VM) instance on a trusted remote compute host. Relying on Trusted Platform Module operations such as binding and sealing to provide integrity guarantees for clients that require a trusted VM launch, we have designed a trusted launch protocol for VM instances in public IaaS environments. We also present a proof-of-concept implementation of the protocol based on OpenStack, an open-source IaaS platform. The results provide a basis for the use of TC mechanisms within IaaS platforms and pave the way for a wider applicability of TC to IaaS security.

Item Type:Article
Additional Information:"The original publication is available at"
Uncontrolled Keywords:IaaS, security, trusted computing, trusted virtual machine launch, OpenStack
ID Code:5359
Deposited By:Nicolae Paladi
Deposited On:20 Jan 2013 13:17
Last Modified:30 Jan 2013 17:37

Repository Staff Only: item control page