Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Domain-Based Storage Protection (DBSP) in Public Infrastructure Clouds
RISE, Swedish ICT, SICS, Security Lab.ORCID iD: 0000-0003-0132-857x
RISE, Swedish ICT, SICS, Security Lab.ORCID iD: 0000-0001-8003-200x
Ericsson, Sweden.
2013 (English)Conference paper, Published paper (Refereed)
Abstract [en]

Confidentiality and integrity of data in Infrastructure-as-a-Service (IaaS) environments increase in relevance as adoption of IaaS advances towards maturity. While current solutions assume a high degree of trust in IaaS provider staff and infrastructure management processes, earlier incidents have demon- strated that neither are impeccable. In this paper we introduce Domain-Based Storage Protection (DBSP) a data confidentiality and integrity protection mechanism for IaaS environments, which relies on trusted computing principles to provide transparent storage isolation between IaaS clients. We describe the building blocks of this mechanism and provide a set of detailed protocols for generation and handling of keys for confidentiality and integrity pro- tection of data stored by guest VM instances. The protocols assume an untrusted IaaS provider and aim to prevent both malicious and accidental faulty config- urations that could lead to breach of data confidentiality and integrity in IaaS deployments.

Place, publisher, year, edition, pages
2013, 7. Vol. 8208, p. 279-296
Keywords [en]
Building blockes, Data confidentiality, Infrastructure managements, Integrity protection, Public infrastructures, Storage protection, Trusted computing
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:ri:diva-24272DOI: 10.1007/978-3-642-41488-6_19Scopus ID: 2-s2.0-84890886366OAI: oai:DiVA.org:ri-24272DiVA, id: diva2:1043352
Conference
18th Nordic Conference, NordSec 2013
Projects
InfraCloudAvailable from: 2016-10-31 Created: 2016-10-31 Last updated: 2020-12-01Bibliographically approved

Open Access in DiVA

fulltext(448 kB)369 downloads
File information
File name FULLTEXT01.pdfFile size 448 kBChecksum SHA-512
0890f9ea0858d3133384b16fad2428726fecba88d2b1e4246189060870ef20d8b6ff67959c9abebbe16f367ae36e7ed3471aa98fa0c64c25f5f9f21b47c012b8
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopushttp

Authority records

Paladi, NicolaeGehrmann, Christian

Search in DiVA

By author/editor
Paladi, NicolaeGehrmann, Christian
By organisation
Security Lab
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 369 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 188 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf