SCONE: Secure linux containers with Intel SGX

Proceedings of the 12th USENIX Symposium on Operating Systems Design and Implementation, OSDI 2016

Volumn , Issue , 2016, Pages 689-703

  Arnautov, Sergei ^a   Trach, Bohdan ^a   Gregor, Franz ^a   Knauth, Thomas ^a   Martin, Andre ^a   Priebe, Christian ^b   Lind, Joshua ^b   Muthukumaran, Divya ^b   O'Keeffe, Dan ^b   Stillwell, Mark L ^b   Goltzsche, David ^c   Eyers, David ^d   Kapitza, Rüdiger ^c   Pietzuch, Peter ^b   Fetzer, Christof ^a  

^a DRESDEN UNIVERSITY OF TECHNOLOGY   (Germany)

^b IMPERIAL COLLEGE LONDON   (United Kingdom)

^c TECHNICAL UNIVERSITY OF BRAUNSCHWEIG   (Germany)

^d UNIVERSITY OF OTAGO   (New Zealand)

Author keywords

[No Author keywords available]

Indexed keywords

APPLICATION PROGRAMS; LINUX; PROGRAM PROCESSORS; SYSTEMS ANALYSIS;

APPLICATION DATA; ASYNCHRONOUS SYSTEM; MULTI TENANTS; PERFORMANCE IMPACT; SOFTWARE KERNELS; STANDARD LIBRARIES; THREAD SYNCHRONIZATION; TRUSTED COMPUTING BASE;

CONTAINERS;

EID: 85068857453     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (66)

1. ABRAMSON, D., JACKSON, J., MUTHRASANALLUR, S., NEIGER, G., REGNIER, G., SANKARAN, R., SCHOINAS, I., UHLIG, R., VEMBU, B., and WIEGERT, J. Intel Virtualization Technology for Directed I/O. Intel Technology Journal (2006).
2. ANATI, I., GUERON, S., JOHNSON, S., and SCARLATA, V. Innovative Technology for CPU Based Attestation and Sealing. In HASP (2013).
3. ARM LIMITED. ARM Security Technology - Building a Secure System using TrustZone Technology, 2009.
4. BAJAJ, S., and SION, R. TrustedDB: A Trusted Hardware Based Database with Privacy and Data Confidentiality. In SIGMOD (2011).
5. BAJAJ, S., and SION, R. CorrectDB: SQL Engine with Practical Query Authentication. VLDB (2013).
6. BAUMANN, A., PEINADO, M., and HUNT, G. Shielding Applications from an Untrusted Cloud with Haven. In OSDI (2014).
7. BERSHAD, B. N., and ANDERSON, T. E., LAZOWSKA, E. D., and LEVY, H. M. User-level interprocess communication for shared memory multiprocessors. ACM TOCS 9, 2 (May 1991), 175-198.
8. BREWER, E. A. Kubernetes and the Path to Cloud Native. In SoCC (2015).
9. BRICKELL, E., GRAUNKE, G., NEVE, M., and SEIFERT, J.-P. Software mitigations to hedge AES against cache-based software side channel vulnerabilities. IACR Cryptology ePrint Archive 2006 (2006), 52.
10. BROWN, N. Linux Kernel Overlay Filesystem Documentation. https://www.kernel.org/doc/Documentation/filesystems/overlayfs.txt, 2015.
11. CARROLL, A., JUAREZ, M., POLK, J., and LEININGER, T. Microsoft Palladium: A Business Overview. Microsoft Content Security Business Unit (2002), 1-9.
12. CHECKOWAY, S., and SHACHAM, H. Iago Attacks: Why the System Call API is a Bad Untrusted RPC Interface. In ASPLOS (2013).
13. CHEN, X., GARFINKEL, T., LEWIS, E. C., SUBRAHMANYAM, P., and WALDSPURGER, C. A., BONEH, D., DWOSKIN, J., and PORTS, D. R. Overshadow: A Virtualization-based Approach to Retrofitting Protection in Commodity Operating Systems. In ASPLOS (2008).
14. COOPER, B. F., SILBERSTEIN, A., TAM, E., RAMAKRISHNAN, R., and SEARS, R. Benchmarking Cloud Serving Systems with YCSB. In SoCC (2010).
15. COSTAN, V., and DEVADAS, S. Intel SGX explained. Tech. rep., Cryptology ePrint Archive, Report 2016/086, 2016.
16. CRISWELL, J., DAUTENHAHN, N., and ADVE, V. Virtual Ghost: Protecting Applications from Hostile Operating Systems. In ASPLOS (2014).
17. CVE-ID: CVE-2014-9357. Available from MITRE at https://cve.mitre.org, Dec. 2014.
18. CVE-ID: CVE-2015-3456. Available from MITRE at https://cve.mitre.org, May 2015.
19. CVE-ID: CVE-2015-5154. Available from MITRE at https://cve.mitre.org, Aug. 2015.
20. DIERKS, T., and RESCORLA, E. The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard), Aug. 2008. Updated by RFCs 5746, 5878, 6176, 7465, 7507, 7568, 7627, 7685.
21. DONG, Y., YANG, X., LI, J., LIAO, G., TIAN, K., and GUAN, H. High performance network virtualization with SR-IOV. Journal of Parallel and Distributed Computing 72, 11 (2012), 1471-1480.
22. FELTER, W., FERREIRA, A., RAJAMONY, R., and RUBIO, J. An updated performance comparison of virtual machines and Linux containers. In ISPASS (2015).
23. FITZPATRICK, B. Distributed caching with memcached. Linux Journal (Aug. 2004).
24. GRABER, H. LXC Linux Containers, 2014.
25. HAPROXY. http://www.haproxy.org, 2016.
26. HOEKSTRA, M., LAL, R., PAPPACHAN, P., PHEGADE, V., and DEL CUVILLO, J. Using Innovative Instructions to Create Trustworthy Software Solutions. In HASP (2013).
27. HOFMANN, O. S., KIM, S., DUNN, A. M., and LEE, M. Z., and WITCHEL, E. InkTag: Secure Applications on an Untrusted Operating System. In ASPLOS (2013).
28. INITIATIVE, T. O. C. https://www.opencontainers.org, 2016.
29. INTEL CORP. Software Guard Extensions Programming Reference, Ref. 329298-002US. https://software.intel.com/sites/default/files/managed/48/88/329298-002.pdf, Oct. 2014.
30. INTEL CORP. Intel Software Guard Extensions (Intel SGX), Ref. 332680-002. https://software.intel.com/sites/default/files/332680-002.pdf, June 2015.
31. INTEL CORP. Product Change Notification 114074-00. https://qdms.intel.com/dm/i.aspx/5A160770-FC47-47A0-BF8A-062540456F0A/PCN114074-00.pdf, October 2015.
32. INTEL CORP. Intel Software Guard Extensions for Linux OS. https://01.org/intel-softwareguard-extensions, June 2016.
33. INTEL CORP. Intel Software Guard Extensions (Intel SGX) SDK. https://software.intel.com/sgx-sdk, 2016.
34. IOZONE. http://www.iozone.org, 2016.
35. KUBERNETES. http://kubernetes.io, 2016.
36. KWON, Y., and DUNN, A. M., LEE, M. Z., HOFMANN, O. S., XU, Y., and WITCHEL, E. Sego: Pervasive Trusted Metadata for Efficiently Verified Untrusted System Services. In ASPLOS (2016).
37. LI, Y., MCCUNE, J., NEWSOME, J., PERRIG, A., BAKER, B., and DREWRY, W. MiniBox: A Two-Way Sandbox for x86 Native Code. In ATC (2014).
38. LIBC, M. https://www.musl-libc.org, 2016.
39. LINDEMANN, M., PEREZ, R., SAILER, R., VAN DOORN, L., and SMITH, S. Building the IBM 4758 Secure Coprocessor. Computer 34, 10 (Oct 2001), 57-66.
40. MCCUNE, J. M., LI, Y., QU, N., ZHOU, Z., DATTA, A., GLIGOR, V., and PERRIG, A. TrustVisor: Efficient TCB Reduction and Attestation. In S&P (2010).
41. MCCUNE, J. M., and PARNO, B. J., PERRIG, A., REITER, M. K., and ISOZAKI, H. Flicker: An Execution Infrastructure for TCB Minimization. In EuroSys (2008).
42. MERKEL, D. Docker: Lightweight Linux Containers for Consistent Development and Deployment. Linux Journal (Mar. 2014).
43. PEINADO, M., CHEN, Y., ENGLAND, P., and MANFERDELLI, J. NGSCB: A Trusted Open System. In ACISP (2004).
44. PROJECT, A. H. S. https://httpd.apache.org, 2016.
45. PURDILA, O., and GRIJINCU, L. A., and TAPUS, N. LKL: The Linux kernel library. In RoEduNet (2010).
46. REDIS. http://redis.io, 2016.
47. REESE, W. Nginx: the High-Performance Web Server and Reverse Proxy. Linux Journal (Sept. 2008).
48. RKT (COREOS). https://coreos.com/rkt, 2016.
49. SANTOS, N., RAJ, H., SAROIU, S., and WOLMAN, A. Using ARM TrustZone to build a trusted language runtime for mobile applications. In ASPLOS (2014).
50. SCHUSTER, F., COSTA, M., FOURNET, C., GKANTSIDIS, C., PEINADO, M., MAINAR-RUIZ, G., and RUSSINOVICH, M. VC3: Trustworthy Data Analytics in the Cloud using SGX. In S&P (2015).
51. SERVICES, A. W. AWS CloudHSM Getting Started Guide. http://aws.amazon.com/cloudhsm, 2016.
52. SOARES, L., and STUMM, M. FlexSC: Flexible System Call Scheduling with Exception-less System Calls. In OSDI (2010).
53. SOLTESZ, S., PÖTZL, H., FIUCZYNSKI, M. E., BAVIER, A., AND PETERSON, L. Container-based operating system virtualization: A scalable, high-performance alternative to hypervisors. SIGOPS OSR (Mar. 2007).
54. SQLCIPHER. https://www.zetetic.net/sqlcipher, 2016.
55. SQLite. https://www.sqlite.org, 2016.
56. SWARM, D. https://docs.docker.com/swarm, 2016.
57. TA-MIN, R., LITTY, L., and LIE, D. Splitting Interfaces: Making Trust Between Applications and Operating Systems Configurable. In OSDI (2006).
58. THONES, J. Microservices. IEEE Software 32, 1 (2015), 116-116.
59. TRUSTED COMPUTING GROUP. Trusted Platform Module Main Specification, version 1.2, revision 116, 2011.
60. UHLIG, R., NEIGER, G., RODGERS, D., SANTONI, A. L., MARTINS, F., and ANDERSON, A. V., BENNETT, S. M., KÄGI, A., and LEUNG, F. H., and SMITH, L. Intel virtualization technology. Computer 38, 5 (2005), 48-56.
61. WONG, W. Stunnel: SSLing Internet Services Easily. SANS Institute, November (2001).
62. A HTTP benchmarking tool based mostly on wrk. https://github.com/giltene/wrk2, 2016.
63. XU, Y., CUI, W., and PEINADO, M. Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems. In S&P (2015).
64. YANG, J., and SHIN, K. G. Using Hypervisor to Provide Data Secrecy for User Applications on a Per-page Basis. In VEE (2008).
65. ZETTER, K. NSA Hacker Chief Explains How to Keep Him Out of Your System. Wired (Jan. 2016).
66. ZHANG, F., CHEN, J., CHEN, H., and ZANG, B. CloudVisor: Retrofitting Protection of Virtual Machines in Multi-tenant Cloud with Nested Virtualization. In SOSP (2011).