Abstract | Although cloud computing service providers offer op-portunities for improving the administration, reliability,
and maintenance of hosted services, they also concen-
trate network resources and data in a small number of
cloud service providers. The concentration of data and
resources also entails various associated risks, including
sharing the underlying infrastructure with unknown (and
untrusted) tenants and relying on the availability and se-
curity of the underlying infrastructure itself. These se-
curity risks represent some of the most significant bar-
riers to the adoption of cloud-based services. To begin
tackling these risks, a cloud hosting infrastructure should
provide strong guarantees for resource and data isolation.
This paper examines data and network isolation prob-
lems with today’s cloud hosting infrastructures and pro-
poses SilverLine, a collection of techniques to improve
data and network isolation for a cloud tenants’ service.
|