Download SilverLine: Data and Network Isolation for Cloud Services Yogesh Mundada

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
Document related concepts

Computer network wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

List of wireless community networks by region wikipedia , lookup

IEEE 1355 wikipedia , lookup

Network tap wikipedia , lookup

Airborne Networking wikipedia , lookup

Transcript 
SilverLine:
Data and Network Isolation
for Cloud Services
Yogesh Mundada
Anirudh Ramachandran
Nick Feamster
1
Cloud Computing Advantages
• Reduced operational costs
• Reduced management
overhead
• Easier resources scaling
• Lowers the barrier to
entry for new services
Cloud revenue for 2010 was $68 billion.
Estimated revenue for 2014 is $150 billion.
2
Recent Cloud Data Leak Incidents
• Microsoft BPOS cloud
service data breach
(Dec 2010)
• Heroku cloud application
platform vulnerability
(Jan 2011)
• Dropbox hash-tag security
flaw (May 2011)
Occurrences such as these make adoption of the
cloud harder
3
Top Cloud Computing Threats
• Shared resources
– Heroku
• Data loss and leakage
– Microsoft BPOS
– Dropbox
4
SilverLine Solution: Isolation
Problem
Data Loss
Network
Side-Channels
Attack
Solution
Service exploit,
Operating
environment
exploit,
Misconfigurations
SilverLine’s
Information Flow
Tracking and Control
Gain more
information about
the environment
through namespace,
RTT and hop-count
study
SilverLine’s
obfuscation of
network metrics to
reduce the
information entropy.
5
SilverLine Data Isolation
• Information Flow Tracking
– Add taints or labels to data
– Track the taints
– System Call Hooks
• Components of the system
– Tracker: Initialize and track
taints, on end hosts
– Enforcer: Stop unauthorized
data flow, in the network
6
Example Setting
SilverLine Storage
service
With automatically
created labels for each
database record
7
Example Setting
Alex’s records are
Labeled with a taint ‘A’
8
Example Setting
VM instance
that runs
application
logic
9
Example Setting
Custom LOGIN module
&
Declassifier
10
Example Setting
Network Level
Enforcer in Dom0
11
Normal User’s Interaction
A3. Start
Worker
Process
A4. Get
Alex’s
Balance
A5. Ans =
$100,
Label=‘A’
A1. Login &
“Get My Balance”
Alex’s
Worker
Process
A6.
Labeled
Replies
A7. Alex’s
Replies pass
A2. Authenticate
Alex to
Declassifier
A8. Reply
= $100
12
An Attacker’s Interaction
B3. Start
Worker
process
B4. Get
Bob &
Alex’s
Balance
B5. Ans=
($10,$100)
Label=‘B,A’
B1. Login,
SQL exploit to get
Bob & Alex’s Balance
Bob’s
Worker
Process
B2. Authenticate
Bob
B6.
Labeled
replies
B7. Bob’s
Replies are
blocked
13
SilverLine Configuration
• Labeling Service
– Specify Taint Creation Policy
when query := “INSERT” and table := “USERS”: Generate
a new label; add it to the DB record
• Custom Login module
– Provided by each tenant
– Authorizes legitimate users
14
SilverLine Solution: Isolation
Problem
Data Loss
Network
Side-Channels
Attack
Solution
Service exploit,
SilverLine’s
Operating
Information Flow
environment exploit, Tracking and Control
Misconfigurations
Gain more
information about
the environment
through namespace,
RTT and hop-count
study
SilverLine’s
obfuscation of
network metrics to
reduce the
information entropy.
15
SilverLine Network Isolation
• IP address obfuscation
– Actual Internal IP to Pseudo IP
– OpenFlow protocol
• Entirely in the software
• Minimal changes
VM1
Local
Controller
VM2
VM3
Actual IP
Pseudo IP
a.b.c.d
w.x.y.z
---------
---------
Centralized
Controller
Click Software Router
with OpenFlowClick
16
SilverLine Network Isolation
• Normalize network metrics
– Realistic RTTs between instances
– Minimal threshold on hop counts
– Modified openflow module for per packet decision
Delay Queue to simulate realistic delays
between virtual machines
To Internal
vitf0 Virtual Machines
From Internal
Virtual Machines
vitf0
vitf1
From External
Virtual Machines
eth0
vitf1
OpenFlowClick
Element
eth0
To External
Virtual Machines
17
SilverLine
Summary
• Data Isolation: Information Flow Tracking
• Network Isolation: Reducing the entropy of
the network side-channels
Future Work
• Measure the taint leakage
• Fine grained tainting in a VMM
18
Questions
B3. Start
Worker
process
B4. Get
Bob &
Alex’s
Balance
B5. Ans=
($10,$100)
Label=‘B,A’
B1. Login,
SQL exploit to get
Bob & Alex’s Balance
Bob’s
Worker
Process
B2. Authenticate
Bob
B6.
Labeled
replies
B7. Bob’s
Replies are
blocked
19
Related documents
BLOOM`S TAXONOMY
BLOOM`S TAXONOMY
Water in the Air - Earth Science With Mrs. Locke
Water in the Air - Earth Science With Mrs. Locke
ASTR2050 Introduction to Astronomy and Astrophysics Studio lab April 1, 2005
ASTR2050 Introduction to Astronomy and Astrophysics Studio lab April 1, 2005
Plotting a Linear Relationship Between Two Variables
Plotting a Linear Relationship Between Two Variables
Economic growth in Gilded Age
Economic growth in Gilded Age
I am a tornado - Santee School District
I am a tornado - Santee School District
R07
R07
Topic 8 Keystone Quiz
Topic 8 Keystone Quiz
Biography - Bob Alberti
Biography - Bob Alberti
Species and Speciation
Species and Speciation