cafe a virtualization based approach to protecting
play

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud - PowerPoint PPT Presentation

Jun 20, 2023 •15 likes •305 views

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic Confidentiality Chung Hwan Kim Sungjin Park Junghwan Rhee Taisook Han Dongyan Xu Jong-jin Won Purdue University The Attached NEC Laboratories KAIST

  1. CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic Confidentiality Chung Hwan Kim Sungjin Park Junghwan Rhee Taisook Han Dongyan Xu Jong-jin Won Purdue University The Attached NEC Laboratories KAIST Institute of ETRI America CAFE: Cloud Application Function Enclaving

  2. Outline • Background and Challenges • CAFE Framework • Evaluation • Related Work • Conclusion 2 CAFE: Cloud Application Function Enclaving

  3. Background: Cloud Marketplace 3 CAFE: Cloud Application Function Enclaving

  4. Challenges • The deployed software faces the risk of piracy and reverse engineering. • Cloud tenants can easily access the binary of software deployed in the guest VMs. • E.g., file access, debugger, memory dump, etc. • They can deploy the same applications without the marketplace. 4 CAFE: Cloud Application Function Enclaving

  5. Goals • Secure execution of sensitive application logic confidential to user VMs • A cloud user with admin privilege cannot obtain the sensitive application logic. • Scalable and practical distribution of secret binaries for cloud marketplaces • Content of the binary remains confidential end-to-end from its submission to its execution. 5 CAFE: Cloud Application Function Enclaving

  6. Design of CAFE 6 CAFE: Cloud Application Function Enclaving

  7. Creation of Secret Binary • Process • Application developers determine which part of application logic needs confidentiality. • Implement public and secret functions separately. • The secret functions are placed in the secret code section of the shared library. • Public binary objects are linked with the CAFE library. • CAFE library features • Transmission layer for the hypervisor • Hypercall interfaces 7 CAFE: Cloud Application Function Enclaving

  8. Submission of Cloud Application • Application developers build their program into two separate groups and submit them to the marketplace. • Public binaries • Packaged in a VM image along with other binaries • Secret binaries • Stored in the Secret Binary Server (SBS) in the cloud provider domain 8 CAFE: Cloud Application Function Enclaving

  9. Secret Binary Deployment Protocol 1. A cloud user executes a purchased cloud app. 9 CAFE: Cloud Application Function Enclaving

  10. Secret Binary Deployment Protocol 2. Pass a SecretBinaryID to the hypervisor in order to match the purchased app with a proper secret binary 10 CAFE: Cloud Application Function Enclaving

  11. Secret Binary Deployment Protocol 3. The SBS and the hypervisor establish a secure channel using a variant of the TLS protocol and share secrets for the secret binary encryption. 11 CAFE: Cloud Application Function Enclaving

  12. Secret Binary Deployment Protocol 4. The SBS generates and sends a nonce to the hypervisor for the freshness of the attestation evidence. 12 CAFE: Cloud Application Function Enclaving

  13. Secret Binary Deployment Protocol 5. The hypervisor performs the TPM_Quote2 operation to attest the integrity of the hypervisor, the trusted computing base of CAFE. 13 CAFE: Cloud Application Function Enclaving

  14. Secret Binary Deployment Protocol 6. The hypervisor transmits a SignedDigest, the result of the TPM_Quote2 operation, to the SBS 14 CAFE: Cloud Application Function Enclaving

  15. Secret Binary Deployment Protocol 7. The SBS attests the integrity of the hypervisor with the VM server’s PU AIK . The success of the attestation means the TCB is not compromised. 15 CAFE: Cloud Application Function Enclaving

  16. Secret Binary Deployment Protocol 8. The SBS sends the AttestResult to the hypervisor. 16 CAFE: Cloud Application Function Enclaving

  17. Secret Binary Deployment Protocol 9. If the AttestResult is SUCCESS, the hypervisor sends a Virtual Machine ID and the SecretBinaryID to the SBS. 17 CAFE: Cloud Application Function Enclaving

  18. Secret Binary Deployment Protocol 10. After checking the license, the SBS encrypts the secret code section of a proper secret binary with the pre-shared secrets in the Step 3. 18 CAFE: Cloud Application Function Enclaving

  19. Secret Binary Deployment Protocol 11. The SBS sends an encrypted secret binary and a HMAC value of the encrypted secret binary to the CAFE library 19 CAFE: Cloud Application Function Enclaving

  20. Secure Loading of Secret Binary 1. The CAFE library loads the encrypted secret binary and requests the hypervisor to securely load it. 20 CAFE: Cloud Application Function Enclaving

  21. Secure Loading of Secret Binary 2. Prior to decryption, the hypervisor isolates the memory area of the encrypted secret binary from the guest VMs. 21 CAFE: Cloud Application Function Enclaving

  22. Secure Loading of Secret Binary 3. The hypervisor verifies the HMAC value and decrypts the encrypted secret binary. 22 CAFE: Cloud Application Function Enclaving

  23. Secure Loading of Secret Binary 4. The hypervisor relocates the decrypted secret binary with the relocation information from the CAFE library. 23 CAFE: Cloud Application Function Enclaving

  24. Secure Loading of Secret Binary 5. The hypervisor returns the result of the deployment process. 24 CAFE: Cloud Application Function Enclaving

  25. Execution of Secret Binary • Call secret functions • Any function call to the code inside the secret binary will trap to the hypervisor. • Pass input parameters to secret binaries • Marshal input parameters into the secret function’s stack • Pass return values to public binaries • Unmarshal outputs into the public binary function’s stack 25 CAFE: Cloud Application Function Enclaving

  26. Implementation • Hypervisor • Implemented on top of the eXtensible and Modular Hypervisor Framework (XMHF) [Oakland’13] • Machine • Processor: AMD Turion II P520 2.3 GHz • Memory: 4GB • Storage: 256 GB SSD • Guest OS: 32-bit version of Ubuntu 12.04 26 CAFE: Cloud Application Function Enclaving

  27. Performance Overhead Application Program Program Info Overhead Category Name NGINX Access module 1.90% Decision-making logic Sendmail Mail filter (Milter) 2.81% Google One-time passcode 2.52% Authenticator generation Cryptographic operations ARIA block encryption / EncFS 900.13% decryption MapReduce k-means clustering 8.04% Data processing workload Hadoop Word counting 5.82% • EncFS is a heavy I/O stress test. Other typical usages of security sensitive operations have low overhead. 27 CAFE: Cloud Application Function Enclaving

  28. Related Work • Overshadow [ASPLOS’08] • Provides cloaking for general purpose legacy unmodified applications and untrusted kernel. • CAFE provides stronger code confidentiality. • Tightly verified and sanitized input and output • A constrained scope of sensitive code • TrustVisor [Oakland’10] • Provides an infrastructure for executing security-sensitive code in isolated memory • CAFE provides the confidentiality of the binaries in an end-to-end manner for the entire lifetime of the deployed software. 28 CAFE: Cloud Application Function Enclaving

  29. Conclusion • CAFE provides the confidential distribution and execution of cloud applications. • We show the effectiveness and practicality of CAFE. • Reasonable performance overhead • Evaluation on six applications commonly used in cloud marketplaces 29 CAFE: Cloud Application Function Enclaving

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel Developer SUSE Linux GmbH, jgross@suse.com Status Quo Standard Xen Virtualization Server dom0 HVM pv Net- Block- xenstore qemu backend backend

421 views • 23 slides
Container-based virtualization Process-level Extensively used in Lightweight virtualization

Container-based virtualization Process-level Extensively used in Lightweight virtualization

C NTR Lightweight OS Containers Jrg Thalheim, Pramod Bhatotia Pedro Fonseca Baris Kasikci USENIX ATC 2018 Container-based virtualization Process-level Extensively used in Lightweight virtualization production isolation Namespaces

250 views • 22 slides
Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy Kashyap Chamarthy kashyapc@fedoraproject.org kashyapc@fedoraproject.org Outline 1/ Virtualization at a glance 2/ Overview of KVM based Virt 3/

151 views • 13 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def

Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def

Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def buyCoffee(cc: CreditCard): Coffee = { 3 val cup = new Coffee() 4 cc.charge(cup.price) 5 cup 6 } 7 } Bad because card is charged as a side

406 views • 12 slides
A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol

A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol

1 A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol Aderholdt 1 , Juho Yoo 1 , Xubin He 1 , and Stephen L. Scott 2 Tennessee Technological University 1 Oak Ridge National Laboratory 2 2 Why HPC &

1.04k views • 40 slides
Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1

Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1

Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1 ILO Multilateral Framework on Labour Migration : Non-binding principles and guidelines for a rights-based approach to labour migration Adopted at

566 views • 29 slides
SenaaS: An Event-driven Sensor Virtualization Approach for Internet of

SenaaS: An Event-driven Sensor Virtualization Approach for Internet of

UNIVERSITY OF OSLO SenaaS: An Event-driven Sensor Virtualization Approach for Internet of Things Cloud Sarfraz Alam , M. M. R. Chowdhury, Josef Noll Connected Life Research Group UNIK/UIO,

1.07k views • 18 slides
Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation.

Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation.

Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation. Experiments demonstrate the overhead of the Abstract Virtualization has emerged as a feasible technique for Embedded Systems, providing safer

237 views • 7 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Sophomore Parent Coffee Class of 2020 A copy of this presentation and handout can be found on

Sophomore Parent Coffee Class of 2020 A copy of this presentation and handout can be found on

Sophomore Parent Coffee Class of 2020 A copy of this presentation and handout can be found on our website: www.unihigh.org/counseling Icebreaker Question: What do you encourage your student to do for stress management? Get out your

624 views • 20 slides
Biology Enzymes 2015-08-28 www.njctl.org Slide 3 / 64 Vocabulary Click on each word below to

Biology Enzymes 2015-08-28 www.njctl.org Slide 3 / 64 Vocabulary Click on each word below to

Slide 1 / 64 Slide 2 / 64 Biology Enzymes 2015-08-28 www.njctl.org Slide 3 / 64 Vocabulary Click on each word below to go to the definition. activation energy enzyme active site feedback inhibition allosteric regulation induced fit

549 views • 22 slides
JCP State of the Nation FOSDEM 2013 Heather VanCura (JCP), Martijn Verburg (LJC) @jcp_org

JCP State of the Nation FOSDEM 2013 Heather VanCura (JCP), Martijn Verburg (LJC) @jcp_org

JCP State of the Nation FOSDEM 2013 Heather VanCura (JCP), Martijn Verburg (LJC) @jcp_org http://jcp.org February 2013 1 Beer 2 Chocolate WHO/FAO: Codex Alimentarius Official Standard for Chocolate 3 Java 4 Agenda Community.

1.09k views • 39 slides
Do trade agreements substantially limit development of local and sustainability food systems?

Do trade agreements substantially limit development of local and sustainability food systems?

Real restrictions or just trade chill? Do trade agreements substantially limit development of local and sustainability food systems? Local / sustainable policy workshop March 4, 2011 Rod MacRae, York University Framing the discussion

500 views • 24 slides
How to Run a Lean Coffee Session Lean Coffee(tm) is a trademark of Modus Cooperandi WHAT IS LEAN

How to Run a Lean Coffee Session Lean Coffee(tm) is a trademark of Modus Cooperandi WHAT IS LEAN

How to Run a Lean Coffee Session Lean Coffee(tm) is a trademark of Modus Cooperandi WHAT IS LEAN COFFEE(tm)? Lean Coffee is a structured, but agenda-less meeting. Participants gather, build an agenda, and begin talking. Conversations are

472 views • 5 slides
The Poisson Distribution August 15, 2019 August 15, 2019 1 / 26 Midterm Results Statistic Raw

The Poisson Distribution August 15, 2019 August 15, 2019 1 / 26 Midterm Results Statistic Raw

The Poisson Distribution August 15, 2019 August 15, 2019 1 / 26 Midterm Results Statistic Raw Score Percentage Mean 32.2 71.5 Median 32 71.1 Standard Deviation 5.0 10.8 Maximum 42 93.3 Minimum 19 42.2 Note: Raw scores are out

890 views • 26 slides
Coffee is brewing, be right with you cobbtechnologies.com @cobbtechnologies

Coffee is brewing, be right with you cobbtechnologies.com @cobbtechnologies

The webinar will start in just a moment. Coffee is brewing, be right with you cobbtechnologies.com @cobbtechnologies @cobbtechnologies @cobbtech cobbtechnologies.com @cobbtechnologies @cobbtechnologies @cobbtech Can Microsoft365

504 views • 14 slides
Learning to Interpret Natural Language Commands through

Learning to Interpret Natural Language Commands through

Learning to Interpret Natural Language Commands through Human-Robot Dialog Jesse Thomason Shiqi Zhang, Raymond Mooney, Peter Stone The University

590 views • 25 slides

More recommend