Secure Virtual Machine Migration (SV2M) in Cloud Federation

Muhammad Awais Shibli; Naveed Ahmad; Ayesha Kanwal; Abdul Ghafoor

doi:10.5220/0005057103440349

Secure Virtual Machine Migration (SV2M) in Cloud Federation

Muhammad Awais Shibli, Naveed Ahmad, Ayesha Kanwal, Abdul Ghafoor

2014

Abstract

Virtual Machine (VM) migration is mainly used for providing high availability, hardware maintenance, workload balancing and fault takeover in Cloud environment. However, it is susceptible to active and passive security attacks during migration process, which makes IT industry hesitant to accept this feature in Cloud. Compromising the VM migration process may result in DOS attacks, loss of data integrity and confidentiality. To cater different attacks such as unauthorized access to images and injecting malicious code on VM disk images, Cloud Providers store images in encrypted form. Therefore, security of VM migration along encrypted disk images keys becomes necessary. Previously, research focus was on the performance of VM migration, leaving security aspects of migration process completely explored. This paper proposes a comprehensive solution for Secure VM Migration (SV2M) in Cloud environment, which ensures authorization, mutual authentication, confidentiality, replay protection, integrity and non-repudiation with minimal changes in existing infrastructure. We have extended the key manager of Cloud provider and introduced new features for management and storage of keys involved in our proposed SV2M solution. In addition to this, we have integrated the proposed solution with OpenStack, which is an open source Cloud platform used by large community for research in Cloud computing. We also evaluated the security of SV2M system using well known automatic protocol verification tool AVISPA

Download

Paper Citation

in Harvard Style

Awais Shibli M., Ahmad N., Kanwal A. and Ghafoor A. (2014). Secure Virtual Machine Migration (SV2M) in Cloud Federation . In Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014) ISBN 978-989-758-045-1, pages 344-349. DOI: 10.5220/0005057103440349

in Bibtex Style

@conference{secrypt14,
author={Muhammad Awais Shibli and Naveed Ahmad and Ayesha Kanwal and Abdul Ghafoor},
title={Secure Virtual Machine Migration (SV2M) in Cloud Federation},
booktitle={Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014)},
year={2014},
pages={344-349},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005057103440349},
isbn={978-989-758-045-1},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 11th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2014)
TI - Secure Virtual Machine Migration (SV2M) in Cloud Federation
SN - 978-989-758-045-1
AU - Awais Shibli M.
AU - Ahmad N.
AU - Kanwal A.
AU - Ghafoor A.
PY - 2014
SP - 344
EP - 349
DO - 10.5220/0005057103440349