Multilateral Security Architecture for Virtualization Platform in Multi-tenancy Cloud Environment
Virtualization technologies enable multi-tenancy cloud business models by providing a scalable, shared resource platform for all tenants. Computing capacity, storage, and network are shared between multi-tenants. However, placing different customers workloads on the same virtualization platform may lead to security vulnerabilities, which include the failure of mechanisms separating storage, memory, routing, and even reputation between different tenants of the shared infrastructure. The co-location of many customers inevitably causes conflict for the cloud provider as customers communication security requirements are likely to be divergent from each other. In this paper, we introduce Multilateral Security concept to multi-tenancy cloud platform. It is difficult to analyze policies defined by consumers in the same virtualization platform in order to guarantee configuration stability given that policies may have conflicts leading to unpredictable effects. We present the Multilateral Security Architecture for Virtualization platform (VPMS) which enables the multilateral security for consumers.
multi-tenancy multilateral security virtualization security conflict negotiation cloud computing
Pengfei Sun Qingni Shen LiangGu Yangwei Li Sihan Qing Zhong Chen
School of Software and Microelectronics, Peking University, Beijing, China MoE Key Lab of Network an MoE Key Lab of Network and Software Assurance, Peking University, Beijing, China Network .& Informat School of Software and Microelectronics, Peking University, Beijing, China Institute of Software, Ch
国际会议
重庆
英文
148-152
2011-08-20(万方平台首次上网日期,不代表论文的发表时间)