TY - GEN
T1 - Implementation software to secure virtual machines with remote grid of secure elements
AU - Aissaoui-Mehrez, Hassane
AU - Urien, Pascal
AU - Pujolle, Guy
N1 - Publisher Copyright:
© 2014 IEEE.
PY - 2014/11/13
Y1 - 2014/11/13
N2 - Security for Future Networks (SecFuNet) is a Brazilian & European research project. The emerging Cloud of Secure Elements infrastructure is used for enforcing identity of Virtual Machines in the Cloud Computing. One of the main goals of the SecFuNet project is to develop a secure infrastructure for virtualized environments and Clouds that not only provides high availability and reliability for users, but that also provides strong isolation among virtual infrastructures. The project aims to develop a security framework for Cloud Computing and virtual environments. The goal of this paper is to describe the implementation and the experimentation of the solution for identifying users and nodes in the SecFuNet architecture. In this implementation, only authorized users are allowed to create or instantiate virtual environments. Thus, users and hyper visors are equipped with secure elements, used to open TLS secure channels with strong mutual authentication. Finally, since the physical substrates are shared by several resources (Users, VMs), the proposed framework must ensure that one resource cannot interfere with the operations of another resource.
AB - Security for Future Networks (SecFuNet) is a Brazilian & European research project. The emerging Cloud of Secure Elements infrastructure is used for enforcing identity of Virtual Machines in the Cloud Computing. One of the main goals of the SecFuNet project is to develop a secure infrastructure for virtualized environments and Clouds that not only provides high availability and reliability for users, but that also provides strong isolation among virtual infrastructures. The project aims to develop a security framework for Cloud Computing and virtual environments. The goal of this paper is to describe the implementation and the experimentation of the solution for identifying users and nodes in the SecFuNet architecture. In this implementation, only authorized users are allowed to create or instantiate virtual environments. Thus, users and hyper visors are equipped with secure elements, used to open TLS secure channels with strong mutual authentication. Finally, since the physical substrates are shared by several resources (Users, VMs), the proposed framework must ensure that one resource cannot interfere with the operations of another resource.
KW - Microcontrollers
KW - OpenID
KW - Secure Elements
KW - User-Centric Identity
KW - Virtualization and Cloud Computing
UR - https://www.scopus.com/pages/publications/84912550562
U2 - 10.1109/MILCOM.2014.51
DO - 10.1109/MILCOM.2014.51
M3 - Conference contribution
AN - SCOPUS:84912550562
T3 - Proceedings - IEEE Military Communications Conference MILCOM
SP - 282
EP - 287
BT - Proceedings - 2014 IEEE Military Communications Conference
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 33rd Annual IEEE Military Communications Conference, MILCOM 2014
Y2 - 6 October 2014 through 8 October 2014
ER -