Abstract
|
Virtualization contributes to the optimiza … Virtualization contributes to the optimization and modularization of resource usage in a machine. Furthermore, many systems have relied on a virtualization layer to provide extra security functionality. Both features rank amongst the most important of the technological capabilities enabling cloud computing, improving performance and security. The availability of hardware support for x86 virtualization allows to run virtual machines (VMs) with very low overhead. However, using hardware virtualization inside the OS makes it unavailable for any additional security code as the hardware
supports only a single layer of VMs. Stacking virtual machines recursively is one solution to this problem. Unfortunately, current implementations induce an overhead that grows exponentially
with the stacking depth. In the paper we address this con?ict by describing a novel design that mitigates the performance issues of recursive virtual machines. Once this solved, the doors are open for the design of advanced security mechanisms that are implemented in the intermediate layers and provide additional security features to the system. We suggest concrete ways to further explore this avenue. crete ways to further explore this avenue.
|
Author
|
Bernhard kauer +
, Paulo Verissimo +
, Alysson Bessani +
|
Booktitle
|
Proceedings of the 1st International Workshop on Dependability of Clouds, Data Centers and Virtual Computing Environments (DCDV'11). DSN'11 supplemental volume. +
|
Key
|
Kauer11recvm +
|
Month
|
jun +
|
NumPubDate
|
2,011.06 +
|
Project
|
Project:TCLOUDS +
|
ResearchLine
|
Fault And Intrusion Tolerance in Open Distributed Systems (FIT) +
|
Title
|
Recursive Virtual Machines for Advanced Security Mechanisms +
|
Type
|
inproceedings +
|
Url
|
http://www.navigators.di.fc.ul.pt/archive/papers/dcdv11-recursivevm.pdf +
|
Year
|
2011 +
|
Categories |
Publication +
|
Modification dateThis property is a special property in this wiki.
|
14 January 2013 14:40:50 +
|