An Enhancement of Trusted Domain Enforcement for Dynamic Protection of Virtual Cluster Using Live Migration

Date Added: Jul 2010
Format: PDF

As virtualization technologies are widely used, the authors are facing new security problem in virtualized and complicated network environment. In this paper, they propose an enhancement of trusted domain enforcement for the dynamic protection of virtual cluster using live migration. TDE (Trusted Domain Enforcement) is an extension of TE (Type Enforcement) for dynamic access control and sandbox which enables simple white list based access control. Virtualization technology provides a strong isolation and makes it possible to move compromised virtual machine to secure and isolated place by adopting live migration. In proposed system, when a virtual machine under TDE is attacked or compromised, the virtual machine is moved to another physical machine with different access control list.