Secure virtualization for cloud computing

Flavio Lombardi, Roberto Di Pietro

Research output: Contribution to journalArticlepeer-review

275 Scopus citations

Abstract

Cloud computing adoption and diffusion are threatened by unresolved security issues that affect both the cloud provider and the cloud user. In this paper, we show how virtualization can increase the security of cloud computing, by protecting both the integrity of guest virtual machines and the cloud infrastructure components. In particular, we propose a novel architecture, Advanced Cloud Protection System (ACPS), aimed at guaranteeing increased security to cloud resources. ACPS can be deployed on several cloud solutions and can effectively monitor the integrity of guest and infrastructure components while remaining fully transparent to virtual machines and to cloud users. ACPS can locally react to security breaches as well as notify a further security management layer of such events. A prototype of our ACPS proposal is fully implemented on two current open source solutions: Eucalyptus and OpenECP. The prototype is tested against effectiveness and performance. In particular: (a) effectiveness is shown testing our prototype against attacks known in the literature; (b) performance evaluation of the ACPS prototype is carried out under different types of workload. Results show that our proposal is resilient against attacks and that the introduced overhead is small when compared to the provided features. © 2010 Elsevier Ltd. All rights reserved.
Original languageEnglish (US)
Pages (from-to)1113-1122
Number of pages10
JournalJournal of Network and Computer Applications
Volume34
Issue number4
DOIs
StatePublished - Jul 1 2011
Externally publishedYes

ASJC Scopus subject areas

  • Hardware and Architecture
  • Computer Networks and Communications
  • Computer Science Applications

Fingerprint

Dive into the research topics of 'Secure virtualization for cloud computing'. Together they form a unique fingerprint.

Cite this