標題: EagleEye: Towards Mandatory Security Monitoring in Virtualized Datacenter Environment
作者: Wu, Yu-Sung
Sun, Pei-Keng
Huang, Chun-Chi
Lu, Sung-Jer
Lai, Syu-Fang
Chen, Yi-Yung
資訊工程學系
Department of Computer Science
公開日期: 2013
摘要: Virtualized datacenter (VDC) has become a popular approach to large-scale system consolidation and the enabling technology for infrastructure-as-a-service cloud computing. The consolidation inevitably aggregates the security threats once faced by individual systems towards a VDC, and a VDC operator should remain vigilant of the threats at all times. We envision the need for on-demand mandatory security monitoring of critical guest systems as a means to track and deter security threats that could jeopardize the operation of a VDC. Unfortunately, existing VDC security monitoring mechanisms all require pre-installed guest components to operate. The security monitoring would either be up to the discretion of individual tenants or require costly direct management of guest systems by the VDC operator. We propose the EagleEye approach for on-demand mandatory security monitoring in VDC environment, which does not depend on pre-installed guest components. We implement a prototype on-access anti-virus monitor to demonstrate the feasibility of the EagleEye approach. We also identify challenges particular to this approach, and provide a set of solutions meant to strengthen future research in this area.
URI: http://hdl.handle.net/11536/24999
ISBN: 978-1-4799-0181-4; 978-1-4673-6471-3
ISSN: 1530-0889
期刊: 2013 43RD ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS (DSN)
Appears in Collections:Conferences Paper