Protectit

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Protectit: trusted distributed services operating on sensitive data

Full text

Pdf (482 KB)

Source

European Conference on Computer Systems archive
Proceedings of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems 2008 table of contents

Glasgow, Scotland UK

SESSION: Distributed systems table of contents

Pages 137-147

Year of Publication: 2008

ISBN:978-1-60558-013-5

Also published in ...

Authors

Jiantao Kong	Georgia Institute of Technology, Atlanta, GA, USA
Karsten Schwan	Georgia Institute of Technology, Atlanta, GA, USA
Min Lee	Georgia Institute of Technology, Atlanta, GA, USA
Mustaque Ahamad	Georgia Institute of Technology, Atlanta, GA, USA

Sponsors

SIGOPS: ACM Special Interest Group on Operating Systems
ACM: Association for Computing Machinery

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 24, Downloads (12 Months): 145, Citation Count: 0

Additional Information:

abstract references index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTex EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1352592.1352608 What is a DOI?

ABSTRACT

Protecting shared sensitive information is a key requirement for today's distributed applications. Our research uses virtualization technologies to create and maintain trusted data paths across distributed machines, for the services being run and their information exchanges. For trusted data paths, runtime protection methods control what data is visible to which distributed services operating on it, guided by online monitoring that determines the levels of trust inherent in the paths' machines, services, and service actions. This paper presents a key functional element of trusted data paths, which is the ProtectIT interception mechanism for controlling the data exchanges between the different virtual machines running trusted services. ProtectIT can be applied to any communication and/or I/O performed by virtual machines, and because ProtectIT does not require application, middleware, or operating system modifications, it can be used to construct trusted data paths without the knowledge or consent of such entities. Further, since ProtectIT operates in virtual machines isolated from those used by applications, it is not subject to the attacks faced by services exposed to the open Internet. ProtectIT's functionality consists of dynamic protection rules represented as data filters applied to virtual machines' communications. Examples presented in this paper include email services for which ProtectIT's filters control data visibility to mail servers and clients, and unsecured virtual machine communications morphed into secure ones via ProtectIT-based message interception.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Sandip Agarwala , Fernando Alegre , Karsten Schwan , Jegannathan Mehalingham, E2EProf: Automated End-to-End Performance Management for Enterprise Systems, Proceedings of the 37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, p.749-758, June 25-28, 2007 [doi>10.1109/DSN.2007.38]
	2	Akamai. http://www.akamai.com/.
	3	Elan Amir , Steven McCanne , Randy Katz, An active service framework and its application to real-time multimedia transcoding, ACM SIGCOMM Computer Communication Review, v.28 n.4, p.178-189, Oct. 1998
	4	Paul Barham , Boris Dragovic , Keir Fraser , Steven Hand , Tim Harris , Alex Ho , Rolf Neugebauer , Ian Pratt , Andrew Warfield, Xen and the art of virtualization, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
	5	David Chappell, Enterprise Service Bus, O'Reilly Media, Inc., 2004
	6	E. Christensen, F. Curbera, G. Meredith, and S. Weerawarana. Web services description language (wsdl) 1.1. http://www.w3.org/TR/wsdl, 2001.
	7	Ellis Cohen , David Jefferson, Protection in the Hydra Operating System, Proceedings of the fifth ACM symposium on Operating systems principles, p.141-160, November 19-21, 1975, Austin, Texas, United States
	8	T. Dierks , C. Allen, The TLS Protocol Version 1.0, RFC Editor, 1999
	9	Úlfar Erlingsson , Benjamin Livshits , Yinglian Xie, End-to-end web application security, Proceedings of the 11th USENIX workshop on Hot topics in operating systems, p.1-6, May 07-09, 2007, San Diego, CA
	10	A. Frier, P. Karlton, and P. Kocher. The ssl 3.0 protocol, 1996.
	11	T. Garfinkel and M. Rosenblum. A virtual machine introspection based architecture for intrusion detection. In Proc. Network and Distributed Systems Security Symposium, February 2003.
	12	D. Gupta, R. Gardner, and L. Cherkasova. Xenmon: Qos monitoring and performance profiling tool. Technical report, HP Labs, 2005.
	13	Graham Hamilton , Michael L. Powell , James G. Mitchell, Subcontract: a flexible base for distributed programming, Proceedings of the fourteenth ACM symposium on Operating systems principles, p.69-79, December 05-08, 1993, Asheville, North Carolina, United States
	14	Himanshu Raj , Karsten Schwan, High performance and scalable I/O virtualization via self-virtualized devices, Proceedings of the 16th international symposium on High performance distributed computing, June 25-29, 2007, Monterey, California, USA [doi>10.1145/1272366.1272390]
	15	Orcale intergration hub. http://www.oracle.com/.
	16	J. Kong, K. Schwan, and P. Widener. Protected data paths: Delivering sensitive data via untrusted proxies. In 2006 International Conference on Privacy, Security and Trust, 2006.
	17	M. Factor, K. Meth, D. Naor, O. Rodeh, and J. Satran. Object Storage: The Future Building Block for Storage Systems. In In proceedings of the Second International IEEE Symposium on Emergence of Globally Distributed Data, 2005.
	18	M. S. Mansour, K. Schwan, and S. Abdelaziz. I-queue: Smart queues for service management. In A. Dan and W. Lamersdorf, editors, ICSOC, volume 4294 of Lecture Notes in Computer Science, pages 252--263. Springer, 2006.
	19	Net nanny. http://www.netnanny.com/.
	20	Citrix netscaler application delivery solutions. http://www.citrix.com/.
	21	OASIS. Web services distributed management 1.1. http://www.oasis-open.org/, 2006.
	22	Van Oleson , Greg Eisenhaur , Calton Pu , Karsten Schwan , Beth Plale , Dick Amin, Operational information systems: an example from the airline industry, Proceedings of the 1st conference on Industrial Experiences with Systems Software, p.1-1, October 22, 2000, San Diego, California
	23	B. D. Payne, M. Carbone, and W. Lee. Secure and flexible monitoring of virtual machines. In Annual Computer Security Applications Conference, 2007.
	24	C. Perkins, IP Encapsulation within IP, RFC Editor, 1996
	25	H. Raj, B. Seshasayee, and K. Schwan. Vmedia: Enhanced multimedia services in virtualized systems, 2007.
	26	R. Sailer, E. Valdez, T. Jaeger, R. Perez, L. van Doorn, J. L. Griffin, and S. Berger. shype: Secure hypervisor approach to trusted virtualized systems. Technical report, IBM T.J. Watson Research Center, 2005.
	27	L. Singaravelu and C. Pu. Fine-grain, end-to-end security for web service compositions. In IEEE SCC, pages 212--219. IEEE Computer Society, 2007.
	28	David L. Tennenhouse , David J. Wetherall, Towards an Active Network Architecture, Proceedings of the 2002 DARPA Active Networks Conference and Exposition, p.2, May 29-30, 2002
	29	Tbico. service oriented architecture. http://www.tbico.com/.
	30	Trusted passage. http://www.cercs.gatech.edu/projects/trustedpassages.
	31	IBM websphere. http://www.ibm.com/.