3 resultados para guarantees
em WestminsterResearch - UK
Resumo:
The infrastructure cloud (IaaS) service model offers improved resource flexibility and availability, where tenants - insulated from the minutiae of hardware maintenance - rent computing resources to deploy and operate complex systems. Large-scale services running on IaaS platforms demonstrate the viability of this model; nevertheless, many organizations operating on sensitive data avoid migrating operations to IaaS platforms due to security concerns. In this paper, we describe a framework for data and operation security in IaaS, consisting of protocols for a trusted launch of virtual machines and domain-based storage protection. We continue with an extensive theoretical analysis with proofs about protocol resistance against attacks in the defined threat model. The protocols allow trust to be established by remotely attesting host platform configuration prior to launching guest virtual machines and ensure confidentiality of data in remote storage, with encryption keys maintained outside of the IaaS domain. Presented experimental results demonstrate the validity and efficiency of the proposed protocols. The framework prototype was implemented on a test bed operating a public electronic health record system, showing that the proposed protocols can be integrated into existing cloud environments.
Resumo:
In Le Guin's Earthsea Quartet, knowledge of the name of a thing or person guarantees control over their destiny. In a world where light and darkness co-exist and where dragons are an extension of humans, a name is the means with which one can achieve one's vision of the world. If utopia is the individual projection of a supposedly collective ideal, then knowledge of names is the vehicle for the realization of one's own utopia, which may well come into conflict with the utopias of others. However, Earthsea is not simply a series of battles between individual utopists. Earthsea itself constitutes a precarious and non-traditional utopia, where antithetical sides co-exist and neither prevails forever. As its name denotes, “earth” and “sea,” darkness and light, tombs and open seas, tiny islands and eternal journeys operate together to produce the setting for the novels and enable the chase of an ever-elusive knowledge. For as the utopists in Earthsea find out, knowledge can only be complete if it also comprises its Jungian opposite, namely ignorance. In an attempt to explore the relation between utopia, knowledge, and ignorance, this article employs psychology and linguistics, and constructs a description of a “just” world which remains necessarily utopian.
Resumo:
Physical location of data in cloud storage is an increasingly urgent problem. In a short time, it has evolved from the concern of a few regulated businesses to an important consideration for many cloud storage users. One of the characteristics of cloud storage is fluid transfer of data both within and among the data centres of a cloud provider. However, this has weakened the guarantees with respect to control over data replicas, protection of data in transit and physical location of data. This paper addresses the lack of reliable solutions for data placement control in cloud storage systems. We analyse the currently available solutions and identify their shortcomings. Furthermore, we describe a high-level architecture for a trusted, geolocation-based mechanism for data placement control in distributed cloud storage systems, which are the basis of an on-going work to define the detailed protocol and a prototype of such a solution. This mechanism aims to provide granular control over the capabilities of tenants to access data placed on geographically dispersed storage units comprising the cloud storage.