Eliminating the Hypervisor Attack Surface for a More Secure Cloud

Cloud computing is quickly becoming the platform of choice for many web services. Virtualization is the key underlying technology enabling cloud providers to host services for a large number of customers. Unfortunately, virtualization software is large, complex, and has a considerable attack surface. As such, it is prone to bugs and vulnerabilities that a malicious Virtual Machine (VM) can exploit to attack or obstruct other VMs - a major concern for organizations wishing to move "To the cloud." In contrast to previous work on hardening or minimizing the virtualization software, the authors eliminate the hypervisor attack surface by enabling the guest VMs to run natively on the underlying hardware while maintaining the ability to run multiple VMs concurrently.

Provided by: Association for Computing Machinery Topic: Cloud Date Added: Oct 2011 Format: PDF

Find By Topic