Confidential Execution of Cloud Services

Tommaso Cucinotta, Davide Cherubini, Eric Jul

2014

Abstract

In this paper, we present Confidential Domain of Execution (CDE), a mechanism for achieving confidential execution of software in an otherwise untrusted environment, e.g., at a Cloud Service Provider. This is achieved by using an isolated execution environment in which any communication with the outside untrusted world is forcibly encrypted by trusted hardware. The mechanism can be useful to overcome the challenging issues in guaranteeing confidential execution in virtualized infrastructures, including cloud computing and virtualized network functions, among other scenarios. Moreover, the proposed mechanism does not suffer from the performance drawbacks typical of other solutions proposed for secure computing, as highlighted by the presented novel validation results.

Paper Citation

in Harvard Style

Cucinotta T., Cherubini D. and Jul E. (2014). Confidential Execution of Cloud Services . In Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-758-019-2, pages 616-621. DOI: 10.5220/0004962406160621

in Bibtex Style

@conference{closer14,
author={Tommaso Cucinotta and Davide Cherubini and Eric Jul},
title={Confidential Execution of Cloud Services},
booktitle={Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2014},
pages={616-621},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004962406160621},
isbn={978-989-758-019-2},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Confidential Execution of Cloud Services
SN - 978-989-758-019-2
AU - Cucinotta T.
AU - Cherubini D.
AU - Jul E.
PY - 2014
SP - 616
EP - 621
DO - 10.5220/0004962406160621