Integrity assurance in the cloud by combined PBA and provenance

Abir Awad, Sara Kadry, Brian Lee, Gururaj Maddodi, Eoin O'Meara

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

5 Citations (Scopus)

Abstract

In this paper, we propose a new integrity assurance system in the cloud by using both hard and soft attestations. By hard attestation, we mean the usage of trusted computing to certify the machines in the cloud or to detect any tamper on the system level including boot, bios and operating system. The soft assurance mechanism is based on the analysis of the cloud provenance data which are collected by logging kernel system calls. This mechanism is data centric which means that it allows the detection of any changes to data artifacts in the cloud. The results of our integrity assurance system is communicated to the user using Cloud Trust Protocol (CTP) developed by the Cloud Security Alliance (CSA). Our proposed scheme is tested on an OpenStack cloud to show a proof of concept of our integrity assurance system.

Original languageEnglish
Title of host publicationProceedings - 2016 10th International Conference on Next Generation Mobile Applications, Security and Technologies, NGMAST 2016
EditorsKhalid Al-Begain, Khalid Al-Begain
PublisherIEEE Computer Society
Pages127-132
Number of pages6
ISBN (Electronic)9781509009497
DOIs
Publication statusPublished - 28 Dec 2016
Event10th International Conference on Next Generation Mobile Applications, Security and Technologies, NGMAST 2016 - Cardiff, Wales, United Kingdom
Duration: 24 Aug 201626 Aug 2016

Publication series

NameInternational Conference on Next Generation Mobile Applications, Services, and Technologies
ISSN (Print)2161-2889
ISSN (Electronic)2161-2897

Conference

Conference10th International Conference on Next Generation Mobile Applications, Security and Technologies, NGMAST 2016
Country/TerritoryUnited Kingdom
CityCardiff, Wales
Period24/08/1626/08/16

Keywords

  • Cloud trust protocol
  • cloud
  • integrity
  • provenance
  • trusted platform module

Fingerprint

Dive into the research topics of 'Integrity assurance in the cloud by combined PBA and provenance'. Together they form a unique fingerprint.

Cite this