nomad mitigating arbitrary
play

Nomad : Mitigating Arbitrary Cloud Side Channels via - PowerPoint PPT Presentation

Jul 03, 2023 •332 likes •1.03k views

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter Co-residency side-channel attacks in clouds Stealing secrets (e.g., keys) VM VM VM Machine Machine Many

  1. Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter

  2. Co-residency side-channel attacks in clouds Stealing secrets (e.g., keys) VM VM VM Machine Machine • Many different vectors (e.g., L2/L3 cache, storage, main memory) Demonstrated side-channel attacks are not limited to: Y. Zhang et al., CCS2012; T. Ristenpart et al., CCS2009; F. Liu et al., Oakland 2015

  3. Limitations of Current Defenses 1. Requires significant/detailed upgrades OS OS e.g., Noise injection Hypervisor e.g., Deterministic execution Hardware e.g., New cache design 2. Attack-specific Proposed defense includes but not limited to: Y. Zhang et al., CCS2013; T. Kim et al., USENIXSec 2012; F. Liu and R. Lee, Micro 2014

  4. Limitations of Current Defenses 1. Requires significant/detailed upgrades OS OS e.g., Noise injection Hypervisor e.g., Deterministic execution Hardware e.g., New cache design 2. Attack-specific What about future side-channel attacks? Proposed defense includes but not limited to: Y. Zhang et al., CCS2013; T. Kim et al., USENIXSec 2012; F. Liu and R. Lee, Micro 2014

  5. Ideal Properties 1) General 2) Immediately deployable

  6. Ideal Properties 1) General 2) Immediately deployable Single-tenancy?

  7. Ideal Properties 1) General 2) Immediately deployable Single-tenancy?

  8. Nomad Ideas 1) General 2) Immediately deployable

  9. Nomad Ideas 1) General Tackle root-cause → Minimize co -residency 2) Immediately deployable

  10. Nomad Ideas 1) General Tackle root-cause → Minimize co -residency 2) Immediately deployable Migration

  11. Nomad Vision: Migration-as-a-Service • Provider-assisted Cloud Controller VM VM VM VM Machine Machine Machine

  12. Nomad Vision: Migration-as-a-Service • Provider-assisted Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  13. Nomad Vision: Migration-as-a-Service • Opt-in Service Service offering Cloud Clients Provider Opt-in? • Provider-assisted Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  14. Nomad Practical Challenges Logic Characterize information leakage due to co-residency Cloud Controller VM VM VM VM Machine Machine Machine

  15. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Cloud Controller VM VM VM VM Machine Machine Machine

  16. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Practical Impact (cloud) Minimal modifications? Cloud Controller VM VM VM VM Machine Machine Machine

  17. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Practical Impact (cloud) Minimal modifications? Cloud Controller VM VM VM VM Machine Machine Machine Practical Impact (applications) 1) Advancement of VM migration techniques 2) Many cloud workloads with in-built resilience to migration

  18. Our Work 1. Idea General side-channel defense via migration

  19. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration

  20. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments

  21. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  22. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  23. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate

  24. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate • Cannot control VM placement • No info. sharing across distinct clients

  25. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate • Cannot control VM placement • No info. sharing across distinct clients ? • Don’t know which other clients are malicious Provider

  26. Information Leakage (InfoLeak) Model InfoLeak ? Clients

  27. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) R B2 B1 VM-level view

  28. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) R B2 B1 VM-level view NR B1 B2

  29. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) Collaborating? (C or NC) C R R1 R2 B2 B1 VM-level view NR B1 B2

  30. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) Collaborating? (C or NC) C R R1 R2 B2 B1 VM-level view NR NC R2 R1 B1 B2

  31. Information Leakage ( InfoLeak ) Model Replicated? NR R <NR,NC> <R,NC> NC Least InfoLeak Collaborating? Most InfoLeak C <NR,C> <R,C>

  32. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  33. System Overview Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  34. System Overview Deployment model (e.g., <NR,NC>) Cloud Clients Provider Opt-in? Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  35. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch

  36. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch Side-channel Parameters: • K: Information leakage rate (i.e., bits per time unit) • P: secret length (i.e., bits)

  37. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch Extracted secret (bits) if two VMs are co-resident for ∆ epochs Provider chooses D and ∆ to AT LEAST satisfy: D * ∆ * K < P

  38. Placement Algorithm Deployment Client Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Placement Algorithm VM Placement

  39. Placement Algorithm Deployment Client Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement

  40. Placement Algorithm Deployment Client F (Deployment Model) Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement

  41. Placement Algorithm Deployment Client F (Deployment Model) Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement F (Network Capacity)

  42. Challenge: Scalability Inputs Should handle tens of thousands of servers Placement Algorithm VM Placement

  43. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day VM Placement

  44. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day VM Placement

  45. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day • Basic Greedy For 400 machines, D > 1 day VM Placement

  46. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day • Basic Greedy For 400 machines, D > 1 day VM Placement

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon,

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon,

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter Context: Infrastructure-as-a-Service Clouds Client API Cloud Controller VM VM Machine VM VM VM Machine Machine

919 views • 73 slides
NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD

NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD

NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD 70m Oceanfast Main Salon NOMAD 70m Oceanfast Hall NOMAD 70m Oceanfast Formal Dining NOMAD 70m Oceanfast Owners suite NOMAD 70m Oceanfast

360 views • 19 slides
How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making

How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making

How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making enough money location independently to have the time and freedom to travel and work when and where you choose. 3 Actually Living the 4-hour

1.41k views • 27 slides
Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad

Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad

Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad HASHICORP Cluster Manager Scheduler Nomad HASHICORP Schedulers map a set of work to a set of resources HASHICORP Work (Input) Resources Web

2.39k views • 74 slides
Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods

Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods

Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods Limited Second Quarter 2020 Earnings Conference Call, August 6, 2020 C O R P O R A T E P A R T I C I P A N T S Taposh Bari, Head of Investor

363 views • 20 slides
Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl

Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl

Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl Nets Clement &amp; Associates Ltd FISHERIES ADVISORS &amp; ANALYSTS Objectives Objectives Characterise the nature and extent of

730 views • 35 slides
Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local

Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local

Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local dimension dimension Remik Augusiak Center for Theoretical Physics, Polish Academy of Sciences, Warsaw, Poland A. Salavrakos, R.A., J. Tura, J.

531 views • 27 slides
Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen

Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen

Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen Himelein DC-AAPOR/WSS July 23, 2014 1 Paper With co-authors Stephanie Eckman (Institute of Employment Research, Nuremberg, Germany) and Siobhan

327 views • 29 slides
Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins

Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins

Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins Univ. of California, Los Angeles (UCLA) PHYSTAT- Workshop on Statistical Issues in Experimental Neutrino Physics, Fermilab September 21, 2016

690 views • 56 slides
UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT

UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT

UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT SUMMARY USA has acquired six highly prospective cobalt assets in NSW, NT, and WA from Nomad Explorations (Nomad) These new projects compliment

437 views • 16 slides
NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of

NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of

NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of Computer Science University of Texas at Austin Joint work with H.-F. Yu, C.-J. Hsieh, H. Yun, and S.V.N. Vishwanathan NIPS 2014 Workshop: Distributed

869 views • 53 slides
The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and

The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and

The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and output files of all important computational materials science codes. From its open-access data it builds several Big-Data Services helping to advance

304 views • 14 slides
Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J.

Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J.

Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J. Mullenix , AIA Megha Parekh Sinha , AICP, LEED AP BD+C Partner, NBBJ Principal, NBBJ Mitigating Stress Dr. John Medina Professor of Bioengineering,

1.01k views • 33 slides
Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre,

Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre,

Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre, Bavarian Academy of Sciences Links with industry Session PRACE-CoEs-FETHPC-EXDCI Workshop Brhl, Germany. 30 October 2018 Who I am What I work

373 views • 6 slides
NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the

NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the

NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the technician on the move In-depth analytics for IP, OTT and DVB signal behaviorisms Interfaces - WiFi zone, Ethernet, ASI, DVB-C, DVB-T/T2, DVB-S/S2 and

383 views • 9 slides
Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact

Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact

Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact symmetrically, no natural parent-child relationship Example: labeling pixels of an image. Potentials C ( y C ) defined on arbitrary cliques C of G

254 views • 12 slides
MINIMAL MODELS FOR OPERADIC ALGEBRAS OVER ARBITRARY RINGS Colloque 2016 du GDR 2875 Topologie

MINIMAL MODELS FOR OPERADIC ALGEBRAS OVER ARBITRARY RINGS Colloque 2016 du GDR 2875 Topologie

MINIMAL MODELS FOR OPERADIC ALGEBRAS OVER ARBITRARY RINGS Colloque 2016 du GDR 2875 Topologie Algbrique et Applications Amiens, 1214 October 2016 Fernando Muro Universidad de Sevilla Differential graded algebras in topology A

482 views • 29 slides
Plan of this talk a. Introduc+on b. Results from LEP c.

Plan of this talk a. Introduc+on b. Results from LEP c.

Plan of this talk a. Introduc+on b. Results from LEP c. Results from LHC d. Outlook Introduc2on What are cosmic rays? Cosmic rays (CR) are particles coming from galaxy or

483 views • 46 slides
AEgIS experiment: a summary of the run and a first glimpse of the data DAMARA SAC Meeting

AEgIS experiment: a summary of the run and a first glimpse of the data DAMARA SAC Meeting

AEgIS experiment: a summary of the run and a first glimpse of the data DAMARA SAC Meeting Angela Gligorova, Nicola Pacifico 23.08.2012, IFT, University of Bergen Outline Overview of the Aegis apparatus for the May-June 2012 run

738 views • 24 slides
1 H O O O Oil of wintergreen contains methyl salicylate which has anti-inflammatory

1 H O O O Oil of wintergreen contains methyl salicylate which has anti-inflammatory

1 H O O O Oil of wintergreen contains methyl salicylate which has anti-inflammatory properties and is closely Wintergreen related to the well-known medication aspirin aspirin (acetylsalicylic acid) 2 Bob Holton Department of

631 views • 23 slides
Temporal classification for historical Romanian texts Alina Maria Ciobanu Anca Dinu Liviu P.

Temporal classification for historical Romanian texts Alina Maria Ciobanu Anca Dinu Liviu P.

http://nlp.unibuc.ro Temporal classification for historical Romanian texts Alina Maria Ciobanu Anca Dinu Liviu P. Dinu Vlad Niculae Octavia-Maria ulea Center for Computational Linguistics University of Bucharest August 2013 .... .. ..

403 views • 13 slides
Deconfinement and Polyakov loop in 2+1 flavor QCD J. H. Weber 1 in collaboration with A. Bazavov 2

Deconfinement and Polyakov loop in 2+1 flavor QCD J. H. Weber 1 in collaboration with A. Bazavov 2

Static Q Overview &amp; introduction Polyakov loop in 2+1 flavor QCD Q correlators Summary Deconfinement and Polyakov loop in 2+1 flavor QCD J. H. Weber 1 in collaboration with A. Bazavov 2 , N. Brambilla 1 , H.T. Ding 3 , P. Petreczky 4 , A.

554 views • 39 slides
Lecture 1: Introduction 2015-10-20 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal 1

Lecture 1: Introduction 2015-10-20 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal 1

Software Design, Modelling and Analysis in UML Lecture 1: Introduction 2015-10-20 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal 1 2015-10-20 main Albert-Ludwigs-Universit at Freiburg, Germany Motivation and Context 1

461 views • 16 slides
Functorial cluster embedding Steve Huntsman FAST Labs / Cyber Technology https://bit.ly/35DMQjr

Functorial cluster embedding Steve Huntsman FAST Labs / Cyber Technology https://bit.ly/35DMQjr

Category Theory OctoberFest JHU; 27 Oct 2019 Functorial cluster embedding Steve Huntsman FAST Labs / Cyber Technology https://bit.ly/35DMQjr 10 November 2019 Category Theory OctoberFest JHU; 27 Oct 2019 2 Overview: TPE + functorial

269 views • 15 slides

More recommend