Upload File

trusted platform module as security enabler for cloud infrastructure as a service ( iaas )

  • Home
  • Documents
  • Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )
10
Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service (IaaS). Gregory T. Hoffer CS7323 – Research Seminar (Dr. Qi Tian)

Upload: may

Post on 23-Feb-2016

88 views

Category:

Documents


1 download

Report

DESCRIPTION

Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS ). Gregory T. Hoffer CS7323 – Research Seminar (Dr. Qi Tian ). Overview. Problem Statement TPM Proposal Discussion Conclusion References. Problem Statement. Trusted Platform Module. - PowerPoint PPT Presentation

TRANSCRIPT

Page 1: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service (IaaS).Gregory T. HofferCS7323 – Research Seminar (Dr. Qi Tian)

Page 2: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Overview Problem Statement TPM Proposal Discussion Conclusion References

Page 3: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Problem Statement

Page 4: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Trusted Platform Module

(Image From [1])

Page 5: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

(Image From [1])

Page 6: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Security Features provided by TPM

1) Access Control: Access to sensitive data and execution of some commands are subject to permission. It is the case for access to cryptographic keys, PCRs and execution of key generation.

2) Attestation: Attestation provided by an entity is a proof of specific data knowledge by that entity. It is usually associated with a digital signature. TCG uses this functionality to prove to a remote entity (e.g. service provider) that a platform wishing to access to the service meets specific integrity requirements. The attestation may be related to hardware or software integrity.

3) Measurements, Logging and Reporting: The measurement is the process of computing a state indicator of hardware and/or software. It may be a hash for a software code. If the measurement is reliable, it gives information on the integrity of the measured entity. The measuring entity must be trustable in order to obtain reliable measurements. TCG defines a module called CRTM (Core Root of Trust for Measurement) which is assumed to be trustable. It is executed when the platform is powered on.

Page 7: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Project Proposal Virtualize TPM Provide Cloud Customer with assurance

or trust that state and configuration of physical platform.

Page 8: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Conclusion

Page 9: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

Questions and Discussion Any questions or comments?

Page 10: Trusted Platform Module as Security Enabler for Cloud Infrastructure as a Service ( IaaS )

References[1] M. Achemlal, S. Gharout, C. Gaber. 2011. Trusted Platform Module as an

Enabler for Security in Cloud Computing. In Network and Information Systems Security (SAR-SSI), La Rouchelle, FR. May 18-21, 2011.

[2] R. Neise, D. Holling, A. Pretschner. 2011. Implementing Trust in Cloud Infrastructures. In 11th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing, CCGrid 2011, Newport Beach, CA. May 23-26, 2011.

[3] B. Berthelon, S. Varette, P. Bouvry. 2011. CertiCloud: a Novel TPM-based Approach to Ensure Cloud IaaS Security. In 11th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing, CCGrid 2011, Newport Beach, CA. May 23-26, 2011.


How to Secure Infrastructure Clouds with Trusted Computing ... · How to Secure Infrastructure Clouds with Trusted ... IaaS security with trusted computing. ... IaaS environment?

IaaS OpenStack

NIST SPECIAL PUBLICATION 1800-19C Trusted Cloud · NIST SP 1800-19C: Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud IaaS Environments iii 57 workloads. When complete,

IaaS azure_vs_amazon

Openstack framework Iaas

FUJITSU Cloud IaaS Trusted Public S5 Service Catalog · FUJITSU Cloud IaaS Trusted Public S5 Service Catalog ... Start with minimal initial investment. ... WEB Server WEB Server DB

Identity and Access Management Initiatives in the … · Importance of Identity Management within the Federal Government "Trusted Identity" is a key enabler for ensuring the safety

เกณฑ์ประเมินผล Enabler ... - wise

Making the move from IaaS to IaaS+ (Why DBaaS Matters!)

Artificial Intelligence, Machine Learning & Blockchain ......Apr 01, 2018  · Blockchain Enabler: IoT, AI, ML: Example: IoT / devices as trusted actors in the supply chain • Create

Walgreens S/4HANA Transition to Hybrid Cloud Technical ... - The... · • Figures as of 31 August 2017, ... (IAAS, PAAS, SAAS) IAAS Cloud IAAS Region 1 IAAS Cloud IAAS Region 2

YLE – The Enabler

DevOps Enabler & Co

IaaS Ordering 04.27.2011v2

04-IAAS-Epidemiología de Las IAAS

SLIP Enabler

เกณฑ์ประเมินผล Enabler ด้านการ ......1 Internal Audit เกณฑ ประเม นผล Enabler ด านการตรวจสอบภายใน

Cluster Enabler

Trusted Execution Environments for Open vSwitch - Diva1159460/FULLTEXT01.pdfTrusted Execution Environments for Open vSwitch A security enabler for the 5G mobile network Khalid Elbashir

Making the Move from IaaS to IaaS+ with DBaaS - HostingCon 2014

Managing IaaS Resources

Trusted Cloud Computing Modelling with Distributed … · Using Eucalyptus cloud software on server-grade hardware, a trusted ... graph for the output variable IaaS ... Physical Security

EMC RecoverPoint /Cluster Enabler Plug-in · EMC RecoverPoint/Cluster Enabler Plug-in Version 4.1.4 Product Guide 3 CONTENTS Preface Chapter 1 About Cluster Enabler Cluster Enabler

Blending Embedded Hardware OTP, SSO, and Out of … · Blending Embedded Hardware OTP, SSO, ... PaaS, IaaS Security Connected! ... Determines trusted platform. Token

IaaS + CSB

The Total Economic Impact™ Of Microsoft Azure IaaS IaaS Total... · appropriateness of an investment in Microsoft Azure IaaS (IaaS). Microsoft reviewed and provided feedback to

A Trusted IaaS Environment with Hardware Security Module

Project: Data Enabler Pro - Color Kinetics · Enablers, including Data Enabler DMX, Data Enabler Ethernet, and Data Enabler EO. Data Enabler Pro is the single solution for all intelligent

FailSafe IaaS

NIST SPECIAL PUBLICATION 1800-19B Trusted Cloud...NIST SPECIAL PUBLICATION 1800-19B Trusted Cloud Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS)

Data Enabler Pro

Knowledge Management Enabler

Trusted Geolocation in the Cloud: Proof of Concept ... · ... (IaaS) cloud computing ... A.2 Intel Trusted Execution Technology (Intel TXT) & Trusted Platform Module (TPM) ... enhanced

Enabler Ethernet · 2020. 6. 26. · Enabler API - One Solution - Desktop or Embedded Enabler Ethernet supports the same Version 4 Client integration as Enabler PCIe. This allows

EMC MirrorView /Cluster Enabler · PDF fileEMC MirrorView/Cluster Enabler Version 3.1 Product Guide 3 Figures Preface Chapter 1 About Cluster Enabler Cluster Enabler overview