Providing security for virtual datacentres
Mihindu, Sas 2010, Providing security for virtual datacentres , in: UKUUG's annual Large Installation Systems Administration (LISA) conference, 23-25 March 2010, Manchester, England.
|PDF (Technical discussion - paper) - Published Version |
Download (224kB) | Preview
This paper provides technique for realising integrity and isolation in virtual systems. This is achieved by supporting a logical cages model, in particular for virtualised datacentres, based on a concept called Trusted Virtual Domains or TVDs. Based on previous work, paper describes a security management framework that helps to realise the abstraction of TVDs by guaranteeing reliable isolation and flow control between domain boundaries. The proposed framework employs networking and storage virtualisation technologies as well as Trusted Computing for policy verification. The main contributions are (1) combining these technologies to realise TVDs and (2) orchestrating them through a management framework that automatically enforces isolation among different zones. In particular, this solution aims at automating the verification, instantiation and deployment of the appropriate security mechanisms and virtualisation technologies based on an input security model, which specifies the required level of isolation and permitted information flows.
|Item Type:||Conference or Workshop Item (Speech)|
|Themes:||Subjects / Themes > T Technology > T Technology (General) > T055.4 Industrial engineering. Management engineering > T058.5 Information technology|
Subjects outside of the University Themes
|Schools:||Colleges and Schools > College of Science & Technology|
Colleges and Schools > College of Science & Technology > School of the Built Environment
|Funders:||UK's Unix & Open Systems User Group (UKUUG)|
|Depositing User:||S Mihindu|
|Date Deposited:||13 Oct 2010 11:53|
|Last Modified:||04 Feb 2014 21:23|
Actions (login required)
|Edit record (repository staff only)|