nomad mitigating arbitrary
play

Nomad : Mitigating Arbitrary Cloud Side Channels via - PowerPoint PPT Presentation

Jul 03, 2023 •332 likes •1.03k views

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter Co-residency side-channel attacks in clouds Stealing secrets (e.g., keys) VM VM VM Machine Machine Many

  1. Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter

  2. Co-residency side-channel attacks in clouds Stealing secrets (e.g., keys) VM VM VM Machine Machine • Many different vectors (e.g., L2/L3 cache, storage, main memory) Demonstrated side-channel attacks are not limited to: Y. Zhang et al., CCS2012; T. Ristenpart et al., CCS2009; F. Liu et al., Oakland 2015

  3. Limitations of Current Defenses 1. Requires significant/detailed upgrades OS OS e.g., Noise injection Hypervisor e.g., Deterministic execution Hardware e.g., New cache design 2. Attack-specific Proposed defense includes but not limited to: Y. Zhang et al., CCS2013; T. Kim et al., USENIXSec 2012; F. Liu and R. Lee, Micro 2014

  4. Limitations of Current Defenses 1. Requires significant/detailed upgrades OS OS e.g., Noise injection Hypervisor e.g., Deterministic execution Hardware e.g., New cache design 2. Attack-specific What about future side-channel attacks? Proposed defense includes but not limited to: Y. Zhang et al., CCS2013; T. Kim et al., USENIXSec 2012; F. Liu and R. Lee, Micro 2014

  5. Ideal Properties 1) General 2) Immediately deployable

  6. Ideal Properties 1) General 2) Immediately deployable Single-tenancy?

  7. Ideal Properties 1) General 2) Immediately deployable Single-tenancy?

  8. Nomad Ideas 1) General 2) Immediately deployable

  9. Nomad Ideas 1) General Tackle root-cause → Minimize co -residency 2) Immediately deployable

  10. Nomad Ideas 1) General Tackle root-cause → Minimize co -residency 2) Immediately deployable Migration

  11. Nomad Vision: Migration-as-a-Service • Provider-assisted Cloud Controller VM VM VM VM Machine Machine Machine

  12. Nomad Vision: Migration-as-a-Service • Provider-assisted Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  13. Nomad Vision: Migration-as-a-Service • Opt-in Service Service offering Cloud Clients Provider Opt-in? • Provider-assisted Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  14. Nomad Practical Challenges Logic Characterize information leakage due to co-residency Cloud Controller VM VM VM VM Machine Machine Machine

  15. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Cloud Controller VM VM VM VM Machine Machine Machine

  16. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Practical Impact (cloud) Minimal modifications? Cloud Controller VM VM VM VM Machine Machine Machine

  17. Nomad Practical Challenges Scalable Design Logic e.g., can Amazon EC2 run this? Characterize information leakage due to co-residency Practical Impact (cloud) Minimal modifications? Cloud Controller VM VM VM VM Machine Machine Machine Practical Impact (applications) 1) Advancement of VM migration techniques 2) Many cloud workloads with in-built resilience to migration

  18. Our Work 1. Idea General side-channel defense via migration

  19. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration

  20. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments

  21. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  22. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  23. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate

  24. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate • Cannot control VM placement • No info. sharing across distinct clients

  25. Threat Model Objective: Extract secrets via co-residency • Can use any kind of resource • Can launch/terminate VMs at will • VMs of a given client can collaborate • Cannot control VM placement • No info. sharing across distinct clients ? • Don’t know which other clients are malicious Provider

  26. Information Leakage (InfoLeak) Model InfoLeak ? Clients

  27. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) R B2 B1 VM-level view

  28. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) R B2 B1 VM-level view NR B1 B2

  29. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) Collaborating? (C or NC) C R R1 R2 B2 B1 VM-level view NR B1 B2

  30. Information Leakage (InfoLeak) Model InfoLeak ? Clients Replicated? (R or NR) Collaborating? (C or NC) C R R1 R2 B2 B1 VM-level view NR NC R2 R1 B1 B2

  31. Information Leakage ( InfoLeak ) Model Replicated? NR R <NR,NC> <R,NC> NC Least InfoLeak Collaborating? Most InfoLeak C <NR,C> <R,C>

  32. Our Work 1. Idea 2. Logic Characterize information General side-channel leakage due to co-residency defense via migration 3. Scalable Design Scalable VM migration strategy that can handle large cloud deployments 4. Practical Impact Practical OpenStack implementation with minimal modifications

  33. System Overview Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  34. System Overview Deployment model (e.g., <NR,NC>) Cloud Clients Provider Opt-in? Cloud Controller Move VMs {…} VM VM VM VM Machine Machine Machine

  35. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch

  36. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch Side-channel Parameters: • K: Information leakage rate (i.e., bits per time unit) • P: secret length (i.e., bits)

  37. Operational Timeline 1 epoch = D time units Time (epoch) Sliding Window of ∆ epochs Run placement algorithm every epoch Extracted secret (bits) if two VMs are co-resident for ∆ epochs Provider chooses D and ∆ to AT LEAST satisfy: D * ∆ * K < P

  38. Placement Algorithm Deployment Client Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Placement Algorithm VM Placement

  39. Placement Algorithm Deployment Client Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement

  40. Placement Algorithm Deployment Client F (Deployment Model) Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement

  41. Placement Algorithm Deployment Client F (Deployment Model) Model Recent VM Workloads & (e.g.,<NR,NC>) Placements Constraints Goal (per epoch): Minimize a global sum of a client- pair InfoLeak across past ∆ epochs Placement i.e., 𝐽𝑜𝑔𝑝𝑀𝑓𝑏𝑙 𝑑 →𝑑 ′ ([𝑢 − ∆, 𝑢]) Algorithm 𝑑,𝑑′ subject to a fixed migration budget VM Placement F (Network Capacity)

  42. Challenge: Scalability Inputs Should handle tens of thousands of servers Placement Algorithm VM Placement

  43. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day VM Placement

  44. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day VM Placement

  45. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day • Basic Greedy For 400 machines, D > 1 day VM Placement

  46. Challenge: Scalability Inputs Should handle tens of thousands of servers • ILP (Integer Linear Programming) Placement Algorithm For 40 machines, D > 1 day • Basic Greedy For 400 machines, D > 1 day VM Placement

Recommend

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon,

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon,

Nomad : Mitigating Arbitrary Cloud Side Channels via Provider-Assisted Migration Soo-Jin Moon, Vyas Sekar Michael K. Reiter Context: Infrastructure-as-a-Service Clouds Client API Cloud Controller VM VM Machine VM VM VM Machine Machine

919 views • 73 slides
NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD

NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD

NOMAD 70m Oceanfast AVAILABLE FOR CHARTER 2019 1 NOMAD 70m Oceanfast Main Salon 2 NOMAD 70m Oceanfast Main Salon NOMAD 70m Oceanfast Hall NOMAD 70m Oceanfast Formal Dining NOMAD 70m Oceanfast Owners suite NOMAD 70m Oceanfast

360 views • 19 slides
How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making

How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making

How to become a Successful Digital Nomad JohnnyFD.com 2 Successful Digital Nomad = Making enough money location independently to have the time and freedom to travel and work when and where you choose. 3 Actually Living the 4-hour

1.41k views • 27 slides
Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad

Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad

Nomad HASHICORP Armon Dadgar @armon HASHICORP HASHICORP Cluster Manager Scheduler Nomad HASHICORP Cluster Manager Scheduler Nomad HASHICORP Schedulers map a set of work to a set of resources HASHICORP Work (Input) Resources Web

2.39k views • 74 slides
Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods

Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods

Nomad Foods Limited Second Quarter 2020 Earnings Conference Call August 6, 2020 Nomad Foods Limited Second Quarter 2020 Earnings Conference Call, August 6, 2020 C O R P O R A T E P A R T I C I P A N T S Taposh Bari, Head of Investor

363 views • 20 slides
Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl

Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl

Mitigating Seabird Mitigating Seabird Interactions with Interactions with Trawl Nets Trawl Nets Clement &amp; Associates Ltd FISHERIES ADVISORS &amp; ANALYSTS Objectives Objectives Characterise the nature and extent of

730 views • 35 slides
Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local

Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local

Self-testing quantum systems of arbitrary local Self-testing quantum systems of arbitrary local dimension dimension Remik Augusiak Center for Theoretical Physics, Polish Academy of Sciences, Warsaw, Poland A. Salavrakos, R.A., J. Tura, J.

531 views • 27 slides
Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen

Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen

Sampling Nomad: A New Technique for Remote, Hard-to-Reach, and Mobile Populations Kristen Himelein DC-AAPOR/WSS July 23, 2014 1 Paper With co-authors Stephanie Eckman (Institute of Employment Research, Nuremberg, Germany) and Siobhan

327 views • 29 slides
Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins

Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins

Reflections on Statistical Data Analysis in Neutrino Experiments since NOMAD and F-C Bob Cousins Univ. of California, Los Angeles (UCLA) PHYSTAT- Workshop on Statistical Issues in Experimental Neutrino Physics, Fermilab September 21, 2016

690 views • 56 slides
UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT

UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT

UraniumSA Limited EGM Presentation 27 th JULY 2018 CEO: Ian Warland UraniumSA (USA) INVESTMENT SUMMARY USA has acquired six highly prospective cobalt assets in NSW, NT, and WA from Nomad Explorations (Nomad) These new projects compliment

437 views • 16 slides
NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of

NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of

NOMAD: A Distributed Framework for Latent Variable Models Inderjit S. Dhillon Department of Computer Science University of Texas at Austin Joint work with H.-F. Yu, C.-J. Hsieh, H. Yun, and S.V.N. Vishwanathan NIPS 2014 Workshop: Distributed

869 views • 53 slides
The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and

The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and

The Novel Materials Discovery (NOMAD) Laboratory maintains the largest Repository for input and output files of all important computational materials science codes. From its open-access data it builds several Big-Data Services helping to advance

304 views • 14 slides
Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J.

Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J.

Mitigating Stress: What Neuroscience Teaches Us About Virtual Work and Collaboration Ryan J. Mullenix , AIA Megha Parekh Sinha , AICP, LEED AP BD+C Partner, NBBJ Principal, NBBJ Mitigating Stress Dr. John Medina Professor of Bioengineering,

1.01k views • 33 slides
Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre,

Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre,

Novel Materials Discovery: NOMAD Rubn Jess Garca-Hernndez Leibniz Supercomputing Centre, Bavarian Academy of Sciences Links with industry Session PRACE-CoEs-FETHPC-EXDCI Workshop Brhl, Germany. 30 October 2018 Who I am What I work

373 views • 6 slides
NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the

NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the

NOMAD - media professionals most versatile companion Ideal desktop analytics tool for the technician on the move In-depth analytics for IP, OTT and DVB signal behaviorisms Interfaces - WiFi zone, Ethernet, ASI, DVB-C, DVB-T/T2, DVB-S/S2 and

383 views • 9 slides
Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact

Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact

Undirected graphical models Graph G : arbitrary undirected graph Useful when variables interact symmetrically, no natural parent-child relationship Example: labeling pixels of an image. Potentials C ( y C ) defined on arbitrary cliques C of G

254 views • 12 slides
Draft Mitigating COVID-19 Impacts in the Workplace Policy Personnel Committee Meeting June

Draft Mitigating COVID-19 Impacts in the Workplace Policy Personnel Committee Meeting June

Draft Mitigating COVID-19 Impacts in the Workplace Policy Personnel Committee Meeting June 3, 2020 TRANSFORMING WASTEWATER TO RESOURCES Background Mitigating COVID-19 Impacts Ensuring the health and safety of District employees is

397 views • 10 slides
Mitigating Geomagnetic Induced Currents Using Surge Arresters ALBERTO RAMIREZ MITIGATING

Mitigating Geomagnetic Induced Currents Using Surge Arresters ALBERTO RAMIREZ MITIGATING

Mitigating Geomagnetic Induced Currents Using Surge Arresters ALBERTO RAMIREZ MITIGATING GEOMAGNETIC INDUCED CURRENTS USING SURGE ARRESTERS Alberto Ramirez Orquin Vanessa Ramirez University of Puerto Rico

656 views • 29 slides
PD2100A User Guide Overview The Nomad Technologies, Inc. PD2100A is a self contained, mobile, all

PD2100A User Guide Overview The Nomad Technologies, Inc. PD2100A is a self contained, mobile, all

PD2100A User Guide Overview The Nomad Technologies, Inc. PD2100A is a self contained, mobile, all inclusive presentation system allowing the user to present virtually any type of media. These presentation materials can be contained on a notebook

551 views • 10 slides
African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018

African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018

2018 IACO Annual Meetings African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018 Status of Major Coffee Insect Pests in Major Coffee Growing Areas of Eastern Ethiopia Mohammedsani Amin Ameyu* and Hika

620 views • 22 slides
Decoding an arbitrary continuous stimulus E.g. Gaussian tuning curves .. what is P(r a |s)? 2

Decoding an arbitrary continuous stimulus E.g. Gaussian tuning curves .. what is P(r a |s)? 2

1 Decoding an arbitrary continuous stimulus E.g. Gaussian tuning curves .. what is P(r a |s)? 2 Decoding an arbitrary continuous stimulus Many neurons voting for an outcome. Work through a specific example assume independence

677 views • 28 slides
Mitigating Composite Pain 1. What are my reporting requirements 2. Why are we here MCP

Mitigating Composite Pain 1. What are my reporting requirements 2. Why are we here MCP

Mitigating Composite Pain 1. What are my reporting requirements 2. Why are we here MCP OVERVIEW 3. Make Safe Short term 4. Remediation Cost Mitigation 5. Project Delivery WHY ARE WE HERE? A Brief History of Combustible Cladding Fires

181 views • 16 slides
Faster arbitrary-precision dot product and matrix multiplication Fredrik Johansson Inria

Faster arbitrary-precision dot product and matrix multiplication Fredrik Johansson Inria

Faster arbitrary-precision dot product and matrix multiplication Fredrik Johansson Inria Bordeaux 26th IEEE Symposium on Computer Arithmetic (ARITH 26) Kyoto, Japan June 10, 2019 1 / 26 Arbitrary-precision arithmetic Precision: p 2 bits

879 views • 35 slides
African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018 Status

African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018 Status

2018 IACO Annual Meetings African Coffee Scientific Conference Hotel Nomad, Libreville, Gabon 20 to 21 November 2018 Status of Major Coffee ( Coffea arabica L.) Diseases in Major Coffee Growing Areas of Eastern Ethiopia Mohammedsani Amin Ameyu*

1.15k views • 28 slides

More recommend