Enhancing grid security using trusted virtualization

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4610 LNCS, Issue , 2007, Pages 372-384

  Löhr, Hans ^a   Ramasamy, Harigovind V ^b   Sadeghi, Ahmad Reza ^a   Schulz, Stefan ^c   Schunter, Matthias ^b   Stüble, Christian ^a  

^a RUHR UNIVERSITY BOCHUM   (Germany)

^b IBM RESEARCH ZURICH   (Switzerland)

^c MAX PLANCK INSTITUT FÜR EISENFORSCHUNG GMBH   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER ARCHITECTURE; COMPUTER CRIME; GRID COMPUTING; NETWORK PROTOCOLS; USER INTERFACES; VIRTUAL REALITY;

GRID RESOURCE PROVIDERS; GRID SECURITY; GRID USERS; TRUSTED VIRTUALIZATION;

SECURITY SYSTEMS;

EID: 38049040255     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-73547-2_39     Document Type: Conference Paper

References (29)

1. Foster, I., Kesselman, C., Tuecke, S.: The anatomy of the grid: Enabling scalable virtual organizations. International Journal of Supercomputer Applications 15, 200-222 (2001)
2. Foster, I., Kesselman, C., Tsudik, G., Tuecke, S.: A security architecture for computational grids. In: Proc. 5th ACM Conference on Computer and Communications Security, pp. 83-92 (1998)
3. Azzedin, F., Maheswaran, M.: Towards trust-aware resource management in grid computing systems. In: Proc. 2nd IEEE International Symposium on Cluster Computing and the Grid, pp. 452-457 (2002)
4. Hwang, K., Kwok, Y.K., Song, S., Chen, M.C.Y., Chen, Y., Zhou, R., Lou, X.: GridSec: Trusted grid computing with security bindings and self-defense against network worms and DDoS attacks. In: Sunderam, V.S., van Albada, G.D., Sloot, P.M.A., Dongarra, J.J. (eds.) ICCS 2005. LNCS, vol. 3516, pp. 187-195. Springer, Heidelberg (2005)
5. Fuggetta, A., Picco, G.P., Vigna, G.: Understanding code mobility. IEEE Transactions on Software Engineering 24, 342-361 (1998)
6. Mao, W., Jin, H., Martin, A.: Innovations for grid security from trusted computing (2005) Available online at http://www.hpl.hp.com/personal/Wenbo.Mao/ research/tcgridsec.pdf
7. Smith, M., Friese, T., Engel, M., Freisleben, B.: Countering security threats in service-oriented on-demand grid computing using sandboxing and trusted computing techniques. Journal of Parallel and Distributed Computing 66, 1189-1204 (2006)
8. Intel Trusted Execution Technology Website: Intel trusted execution technology (2006) http://www.intel.com/technology/security
9. AMD Virtualization Website: Introducing AMD virtualization (2006) http://www.amd.com/virtualization
10. Sailer, R., Jaeger, T., Valdez, E., Cáceres, R., Perez, R., Berger, S., Griffin, J.L., van Doom, L.: Building a MAC-based security architecture for the Xen open-source hypervisor. In: Proc. 21st Annual Computer Security Applications Conference, IEEE Computer Society, pp. 276285. IEEE Computer Society Press, Los Alamitos (2005)
11. Nabhen, R., Jamhour, E., Maziero, C.: A policy based framework for access control. In: Proc. 5th International Conference on Information and Communications Security, pp. 47-59 (2003)
12. Garfinkel, T., Pfaff, B., Chow, J., Rosenblum, M., Boneh, D.: Terra: A virtual machine-based platform for trusted computing. In: Proc. 19th ACM Symposium on Operating Systems Principles, pp. 193-206 (2003)
13. Löhr, H., Ramasamy, H.V., Sadeghi, A.R., Schulz, S., Schunter, M., Stüble, C.: Enhancing grid security using trusted virtualization (extended version) (2007) http://www.prosee.rub.de/publications.html
14. TCG Website: TPM Specification version 1.2. (2006) Available online at https://www.trustedcomputinggroup.org/specs/TPM
15. Brickell, E., Camenisch, J., Chen, L.: Direct anonymous attestation. In: Proc. ACM Conference on Computer and Communications Security, pp. 132-145 (2004)
16. Sadeghi, A.R., Stüble, C.: Property-based attestation for computing platforms: caring about properties, not mechanisms. In: Proc 2004 New Security Paradigms Workshop, pp. 67-77 (2004)
17. Rutkowska, J.: Blue pill. Presented at Syscan '06 (2006) http://theinvisiblethings.blogspot.com/
18. Pfitzmann, B., Riordan, J., Stüble, C., Waidner, M., Weber, A.: The PERSEUS system architecture. Technical Report RZ 3335 (#93381), IBM Research (2001)
19. OpenTC Website: The OpenTC project (2006) http://www.opentc.net
20. EMSCB Website: The EMSCB project (2006) http://www.emscb.org
21. Zhao, S., Lo, V., Gauthier-Dickey, C.: Result verification and trust-based scheduling in peer-to-peer grids. In: Proc. 5th IEEE International Conference on P2P Computing, pp. 31-38 (2005)
22. Cavalcanti, E., Assis, L., Gaudêncio, M., Cime, W., Brasileiro, F., Novaes, R.: Sandboxing for a free-to-join grid with support for secure site-wide storage area. In: Proc. 1st International Workshop on Virtualization Technology in Distributed Computing (2006)
23. McCune, J.M., Jaeger, T., Berger, S., Cáceres, R., Sailer, R.: Shamon: A system for distributed mandatory access control. In: Proc. 22nd Annual Computer Security Applications Conference, pp. 23-32 (2006)
24. Sailer, R., Zhang, X., Jaeger, T., van Doom, L.: Design and implementation of a TCG-based integrity measurement architecture. In: Proc. Annual USENIX Security Symposium, USENIX, pp. 223-238 (2004)
25. Jaeger, T., Sailer, R., Shankar, U.: PRIMA: policy-reduced integrity measurement architecture. In: Proc. 11th ACM Symposium on Access Control Models and Technologies, pp. 19-28 (2006)
26. Mao, W., Yan, F., Chen, C.: Daonity - grid security with behaviour conformity from trusted computing. In: Proc. 1st ACM Workshop on Scalable Trusted Computing (2006)
27. Cooper, A., Martin, A.: Trusted delegation for grid computing. In: Presented at: 2nd Workshop on Advances in Trusted Computing (2006)
28. Dinda, P.A.: Addressing the trust asymmetry problem in grid computing with encrypted computation. In: Proc. 7th Workshop on Languages, Compilers, and Run-Time Support for Scalable Systems, pp. 1-7 (2004)
29. Algesheimer, J., Cachin, C., Camenisch, J., Karjoth, G.: Cryptographic security for mobile code. Technical Report RZ 3302 (# 93348), IBM Research (2000)