Providing security for virtual datacentres

Mihindu, Sas 2010, Providing security for virtual datacentres , in: UKUUG's annual Large Installation Systems Administration (LISA) conference, 23-25 March 2010, Manchester, England.

PDF (Technical discussion - paper) - Published Version
Download (230kB) | Preview


This paper provides technique for realising integrity and isolation in virtual systems. This is achieved by supporting a logical cages model, in particular for virtualised datacentres, based on a concept called Trusted Virtual Domains or TVDs. Based on previous work, paper describes a security management framework that helps to realise the abstraction of TVDs by guaranteeing reliable isolation and flow control between domain boundaries. The proposed framework employs networking and storage virtualisation technologies as well as Trusted Computing for policy verification. The main contributions are (1) combining these technologies to realise TVDs and (2) orchestrating them through a management framework that automatically enforces isolation among different zones. In particular, this solution aims at automating the verification, instantiation and deployment of the appropriate security mechanisms and virtualisation technologies based on an input security model, which specifies the required level of isolation and permitted information flows.

Item Type: Conference or Workshop Item (Speech)
Themes: Subjects / Themes > T Technology > T Technology (General) > T055.4 Industrial engineering. Management engineering > T058.5 Information technology
Subjects outside of the University Themes
Schools: Schools > School of the Built Environment
Publisher: UKUUG
Refereed: No
Funders: UK's Unix & Open Systems User Group (UKUUG)
Depositing User: S Mihindu
Date Deposited: 13 Oct 2010 10:53
Last Modified: 10 Aug 2017 05:14

Actions (login required)

Edit record (repository staff only) Edit record (repository staff only)


Downloads per month over past year