cafe a virtualization based approach to protecting
play

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud - PowerPoint PPT Presentation

Jun 20, 2023 •15 likes •305 views

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic Confidentiality Chung Hwan Kim Sungjin Park Junghwan Rhee Taisook Han Dongyan Xu Jong-jin Won Purdue University The Attached NEC Laboratories KAIST

  1. CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic Confidentiality Chung Hwan Kim Sungjin Park Junghwan Rhee Taisook Han Dongyan Xu Jong-jin Won Purdue University The Attached NEC Laboratories KAIST Institute of ETRI America CAFE: Cloud Application Function Enclaving

  2. Outline • Background and Challenges • CAFE Framework • Evaluation • Related Work • Conclusion 2 CAFE: Cloud Application Function Enclaving

  3. Background: Cloud Marketplace 3 CAFE: Cloud Application Function Enclaving

  4. Challenges • The deployed software faces the risk of piracy and reverse engineering. • Cloud tenants can easily access the binary of software deployed in the guest VMs. • E.g., file access, debugger, memory dump, etc. • They can deploy the same applications without the marketplace. 4 CAFE: Cloud Application Function Enclaving

  5. Goals • Secure execution of sensitive application logic confidential to user VMs • A cloud user with admin privilege cannot obtain the sensitive application logic. • Scalable and practical distribution of secret binaries for cloud marketplaces • Content of the binary remains confidential end-to-end from its submission to its execution. 5 CAFE: Cloud Application Function Enclaving

  6. Design of CAFE 6 CAFE: Cloud Application Function Enclaving

  7. Creation of Secret Binary • Process • Application developers determine which part of application logic needs confidentiality. • Implement public and secret functions separately. • The secret functions are placed in the secret code section of the shared library. • Public binary objects are linked with the CAFE library. • CAFE library features • Transmission layer for the hypervisor • Hypercall interfaces 7 CAFE: Cloud Application Function Enclaving

  8. Submission of Cloud Application • Application developers build their program into two separate groups and submit them to the marketplace. • Public binaries • Packaged in a VM image along with other binaries • Secret binaries • Stored in the Secret Binary Server (SBS) in the cloud provider domain 8 CAFE: Cloud Application Function Enclaving

  9. Secret Binary Deployment Protocol 1. A cloud user executes a purchased cloud app. 9 CAFE: Cloud Application Function Enclaving

  10. Secret Binary Deployment Protocol 2. Pass a SecretBinaryID to the hypervisor in order to match the purchased app with a proper secret binary 10 CAFE: Cloud Application Function Enclaving

  11. Secret Binary Deployment Protocol 3. The SBS and the hypervisor establish a secure channel using a variant of the TLS protocol and share secrets for the secret binary encryption. 11 CAFE: Cloud Application Function Enclaving

  12. Secret Binary Deployment Protocol 4. The SBS generates and sends a nonce to the hypervisor for the freshness of the attestation evidence. 12 CAFE: Cloud Application Function Enclaving

  13. Secret Binary Deployment Protocol 5. The hypervisor performs the TPM_Quote2 operation to attest the integrity of the hypervisor, the trusted computing base of CAFE. 13 CAFE: Cloud Application Function Enclaving

  14. Secret Binary Deployment Protocol 6. The hypervisor transmits a SignedDigest, the result of the TPM_Quote2 operation, to the SBS 14 CAFE: Cloud Application Function Enclaving

  15. Secret Binary Deployment Protocol 7. The SBS attests the integrity of the hypervisor with the VM server’s PU AIK . The success of the attestation means the TCB is not compromised. 15 CAFE: Cloud Application Function Enclaving

  16. Secret Binary Deployment Protocol 8. The SBS sends the AttestResult to the hypervisor. 16 CAFE: Cloud Application Function Enclaving

  17. Secret Binary Deployment Protocol 9. If the AttestResult is SUCCESS, the hypervisor sends a Virtual Machine ID and the SecretBinaryID to the SBS. 17 CAFE: Cloud Application Function Enclaving

  18. Secret Binary Deployment Protocol 10. After checking the license, the SBS encrypts the secret code section of a proper secret binary with the pre-shared secrets in the Step 3. 18 CAFE: Cloud Application Function Enclaving

  19. Secret Binary Deployment Protocol 11. The SBS sends an encrypted secret binary and a HMAC value of the encrypted secret binary to the CAFE library 19 CAFE: Cloud Application Function Enclaving

  20. Secure Loading of Secret Binary 1. The CAFE library loads the encrypted secret binary and requests the hypervisor to securely load it. 20 CAFE: Cloud Application Function Enclaving

  21. Secure Loading of Secret Binary 2. Prior to decryption, the hypervisor isolates the memory area of the encrypted secret binary from the guest VMs. 21 CAFE: Cloud Application Function Enclaving

  22. Secure Loading of Secret Binary 3. The hypervisor verifies the HMAC value and decrypts the encrypted secret binary. 22 CAFE: Cloud Application Function Enclaving

  23. Secure Loading of Secret Binary 4. The hypervisor relocates the decrypted secret binary with the relocation information from the CAFE library. 23 CAFE: Cloud Application Function Enclaving

  24. Secure Loading of Secret Binary 5. The hypervisor returns the result of the deployment process. 24 CAFE: Cloud Application Function Enclaving

  25. Execution of Secret Binary • Call secret functions • Any function call to the code inside the secret binary will trap to the hypervisor. • Pass input parameters to secret binaries • Marshal input parameters into the secret function’s stack • Pass return values to public binaries • Unmarshal outputs into the public binary function’s stack 25 CAFE: Cloud Application Function Enclaving

  26. Implementation • Hypervisor • Implemented on top of the eXtensible and Modular Hypervisor Framework (XMHF) [Oakland’13] • Machine • Processor: AMD Turion II P520 2.3 GHz • Memory: 4GB • Storage: 256 GB SSD • Guest OS: 32-bit version of Ubuntu 12.04 26 CAFE: Cloud Application Function Enclaving

  27. Performance Overhead Application Program Program Info Overhead Category Name NGINX Access module 1.90% Decision-making logic Sendmail Mail filter (Milter) 2.81% Google One-time passcode 2.52% Authenticator generation Cryptographic operations ARIA block encryption / EncFS 900.13% decryption MapReduce k-means clustering 8.04% Data processing workload Hadoop Word counting 5.82% • EncFS is a heavy I/O stress test. Other typical usages of security sensitive operations have low overhead. 27 CAFE: Cloud Application Function Enclaving

  28. Related Work • Overshadow [ASPLOS’08] • Provides cloaking for general purpose legacy unmodified applications and untrusted kernel. • CAFE provides stronger code confidentiality. • Tightly verified and sanitized input and output • A constrained scope of sensitive code • TrustVisor [Oakland’10] • Provides an infrastructure for executing security-sensitive code in isolated memory • CAFE provides the confidentiality of the binaries in an end-to-end manner for the entire lifetime of the deployed software. 28 CAFE: Cloud Application Function Enclaving

  29. Conclusion • CAFE provides the confidential distribution and execution of cloud applications. • We show the effectiveness and practicality of CAFE. • Reasonable performance overhead • Evaluation on six applications commonly used in cloud marketplaces 29 CAFE: Cloud Application Function Enclaving

Recommend

Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica

AMD Pacifica Virtualization Technology AMD Unveils Virtualization Platform AMD Pacifica Tutorial 2 Virtual Machine Approaches Carve a Server into Many Virtual Machines Hosted Hypervisor-based Virtualization Virtualization App App

539 views • 18 slides
A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel

A Fault Tolerant Virtualization Server Based on Xen Jrgen Gro Virtualization Kernel Developer SUSE Linux GmbH, jgross@suse.com Status Quo Standard Xen Virtualization Server dom0 HVM pv Net- Block- xenstore qemu backend backend

421 views • 23 slides
Container-based virtualization Process-level Extensively used in Lightweight virtualization

Container-based virtualization Process-level Extensively used in Lightweight virtualization

C NTR Lightweight OS Containers Jrg Thalheim, Pramod Bhatotia Pedro Fonseca Baris Kasikci USENIX ATC 2018 Container-based virtualization Process-level Extensively used in Lightweight virtualization production isolation Namespaces

250 views • 22 slides
Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy Kashyap Chamarthy kashyapc@fedoraproject.org kashyapc@fedoraproject.org Outline 1/ Virtualization at a glance 2/ Overview of KVM based Virt 3/

151 views • 13 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.27k views • 26 slides
Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def

Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def

Basics of Functional Programming 1 / 12 A Motivating Example: Cafe 1 class Cafe { 2 def buyCoffee(cc: CreditCard): Coffee = { 3 val cup = new Coffee() 4 cc.charge(cup.price) 5 cup 6 } 7 } Bad because card is charged as a side

406 views • 12 slides
A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol

A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol

1 A Top-Down Approach to Dynamically Tune I/ O for HPC Virtualization Ben Eckart 1 , Ferrol Aderholdt 1 , Juho Yoo 1 , Xubin He 1 , and Stephen L. Scott 2 Tennessee Technological University 1 Oak Ridge National Laboratory 2 2 Why HPC &

1.04k views • 40 slides
Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1

Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1

Protecting the Rights of Migrant Workers: The Role of Trade Unions with a Four Pillar Approach 1 ILO Multilateral Framework on Labour Migration : Non-binding principles and guidelines for a rights-based approach to labour migration Adopted at

566 views • 29 slides
SenaaS: An Event-driven Sensor Virtualization Approach for Internet of

SenaaS: An Event-driven Sensor Virtualization Approach for Internet of

UNIVERSITY OF OSLO SenaaS: An Event-driven Sensor Virtualization Approach for Internet of Things Cloud Sarfraz Alam , M. M. R. Chowdhury, Josef Noll Connected Life Research Group UNIK/UIO,

1.07k views • 18 slides
Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation.

Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation.

Adding virtualization support in MIPS 4Kc-based MPSoCs Omitted for blind review occupation. Experiments demonstrate the overhead of the Abstract Virtualization has emerged as a feasible technique for Embedded Systems, providing safer

237 views • 7 slides
Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing

4/1/2013 Virtualization and SDN Applications 2 Virtualization Network Virtualization Sharing physical hardware or software resources by Share physical network resources to form multiple multiple users and/or use cases diverse virtual

511 views • 5 slides
4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address

4/22/2009 Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Distributed Systems Storage virtualization Logical view of disks connected to a machine

407 views • 3 slides
Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare

Virtualization. A dream within a dream Type 1 Virtualization Hypervisor run on bare metal. Dedicated virtualization machine. Higher performance. Typical for servers. Type 2 Virtualization Hypervisor sits on

571 views • 17 slides
Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does

Virtualization and Containerization What is Virtualization? What is Containerization? What does this do for us? Virtual Machines: Terminology Types of Hypervisors VirtualBox and VMWare

2.8k views • 30 slides
Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of

Virtualization Technology Zhiming Shen Virtualization: rejuvenation 1960s: first track of virtualization Time and resource sharing on expensive mainframes IBM VM/370 Late 1970s and early 1980s: became unpopular Cheap

924 views • 34 slides
Cybersecurity No Need to Panic A Practical Approach to Protecting Yourself Tom Clark Chief

Cybersecurity No Need to Panic A Practical Approach to Protecting Yourself Tom Clark Chief

Cybersecurity No Need to Panic A Practical Approach to Protecting Yourself Tom Clark Chief Information Officer November 7, 2018 Remember This One? Clip is located at https://www.youtube.com/watch?v=KXzNo0vR_dU 2 So What Changed? Whats

313 views • 15 slides
Virtualization of Linux based computers: Virtualization of Linux based computers: the Linux-

Virtualization of Linux based computers: Virtualization of Linux based computers: the Linux-

Virtualization of Linux based computers: Virtualization of Linux based computers: the Linux- -VServer project VServer project the Linux Beno t des Ligneris, Ph. D. t des Ligneris, Ph. D. Beno Benoit.des.Ligneris@RevolutionLinux.com

2.37k views • 198 slides
Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization

Hardware / Virtualization / Architectures Foundations of the cloud Implementing Virtualization Technologies Cloud Computing relies heavily on the concept of virtualization In fact not possible without it. But they are separate

836 views • 32 slides
Analysis Tools Cristina Masoller Cristina.masoller@upc.edu www.fisica.edu.uy/~cris First CAFE

Analysis Tools Cristina Masoller Cristina.masoller@upc.edu www.fisica.edu.uy/~cris First CAFE

Symbolic and Network-based Analysis Tools Cristina Masoller Cristina.masoller@upc.edu www.fisica.edu.uy/~cris First CAFE School Sitges 18/11/2019 Introducing myself Originally from Montevideo, Uruguay PhD in physics (lasers, Bryn Mawr

1.6k views • 140 slides
Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is

Linux Virtualization Kir Kolyshkin <kir@openvz.org> OpenVZ project manager What is virtualization? Virtualization is a technique for deploying technologies. Virtualization creates a level of indirection or an abstraction layer between a

388 views • 27 slides
IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization

IO Virtualization Kedar & Ozzie Overview Benefits Challenges Full Virtualization Paravirtualization Front-ends, Back-ends Pass through mode Virtualization : Review Create a Virtual machine that can emulate

327 views • 20 slides
Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation.

Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation.

Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation. Privately owned company. Based in Hull. Weve been making paint since 1908. Who am I? Chris Gibbons. L2 Icorr Paint inspector. 40 years

603 views • 14 slides
Safeguarding Your Information The Onion Take a layered-approach to protecting your information

Safeguarding Your Information The Onion Take a layered-approach to protecting your information

Safeguarding Your Information The Onion Take a layered-approach to protecting your information Know what fraud and scams looks like Opt-out of sharing your information Protect how its accessed Limit what can happen if it is

414 views • 10 slides

More recommend