Integrated security for services hosted in virtual environments

Dilshan Jayarathna; Vijay Varadharajan; Udaya Tupakula

doi:10.1109/TrustCom.2016.0049

Integrated security for services hosted in virtual environments

Dilshan Jayarathna, Vijay Varadharajan, Udaya Tupakula

Department of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

Abstract

In this paper, we introduce an integrated security architecture that combines TPM based trust management with hypervisor level access control and intrusion detection system to provide a holistic approach for securing services hosted in virtualised environments. We describe the implementation of the security architecture in detail and demonstrate the functionality of the proposed architecture for different attack scenarios. Our architecture is able to perform dynamic attack detection and update the security policies to protect the services from the identified threats. The proposed integrated security architecture can be easily adopted to be used in cloud and distributed virtualised environments.

Original language	English
Title of host publication	IEEE TrustCom/BigDataSE/ISPA 2016
Subtitle of host publication	Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications
Place of Publication	Piscataway, NJ
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	82-89
Number of pages	8
ISBN (Electronic)	9781509032051
ISBN (Print)	9781509032068
DOIs	https://doi.org/10.1109/TrustCom.2016.0049
Publication status	Published - 2016
Event	Joint 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications, IEEE TrustCom/BigDataSE/ISPA 2016 - Tianjin, China Duration: 23 Aug 2016 → 26 Aug 2016

Other

Other	Joint 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications, IEEE TrustCom/BigDataSE/ISPA 2016
Country	China
City	Tianjin
Period	23/08/16 → 26/08/16

Keywords

Access control
Integrated security
Intrusion detection
Security attacks
Trusted computing
Virtualisation security

Access to Document

10.1109/TrustCom.2016.0049

Link to publication in Scopus

Fingerprint Dive into the research topics of 'Integrated security for services hosted in virtual environments'. Together they form a unique fingerprint.

Cite this

Jayarathna, D., Varadharajan, V., & Tupakula, U. (2016). Integrated security for services hosted in virtual environments. In IEEE TrustCom/BigDataSE/ISPA 2016: Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications (pp. 82-89). Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/TrustCom.2016.0049

Jayarathna, Dilshan ; Varadharajan, Vijay ; Tupakula, Udaya. / Integrated security for services hosted in virtual environments. IEEE TrustCom/BigDataSE/ISPA 2016: Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications. Piscataway, NJ : Institute of Electrical and Electronics Engineers (IEEE), 2016. pp. 82-89

@inproceedings{87c393680f3f47dbb5067f8febe037a8,

title = "Integrated security for services hosted in virtual environments",

abstract = "In this paper, we introduce an integrated security architecture that combines TPM based trust management with hypervisor level access control and intrusion detection system to provide a holistic approach for securing services hosted in virtualised environments. We describe the implementation of the security architecture in detail and demonstrate the functionality of the proposed architecture for different attack scenarios. Our architecture is able to perform dynamic attack detection and update the security policies to protect the services from the identified threats. The proposed integrated security architecture can be easily adopted to be used in cloud and distributed virtualised environments.",

keywords = "Access control, Integrated security, Intrusion detection, Security attacks, Trusted computing, Virtualisation security",

author = "Dilshan Jayarathna and Vijay Varadharajan and Udaya Tupakula",

year = "2016",

doi = "10.1109/TrustCom.2016.0049",

language = "English",

isbn = "9781509032068",

pages = "82--89",

booktitle = "IEEE TrustCom/BigDataSE/ISPA 2016",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

note = "Joint 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications, IEEE TrustCom/BigDataSE/ISPA 2016 ; Conference date: 23-08-2016 Through 26-08-2016",

}

Jayarathna, D, Varadharajan, V & Tupakula, U 2016, Integrated security for services hosted in virtual environments. in IEEE TrustCom/BigDataSE/ISPA 2016: Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications. Institute of Electrical and Electronics Engineers (IEEE), Piscataway, NJ, pp. 82-89, Joint 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications, IEEE TrustCom/BigDataSE/ISPA 2016, Tianjin, China, 23/08/16. https://doi.org/10.1109/TrustCom.2016.0049

Integrated security for services hosted in virtual environments. / Jayarathna, Dilshan; Varadharajan, Vijay ; Tupakula, Udaya.

IEEE TrustCom/BigDataSE/ISPA 2016: Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications. Piscataway, NJ : Institute of Electrical and Electronics Engineers (IEEE), 2016. p. 82-89.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Integrated security for services hosted in virtual environments

AU - Jayarathna, Dilshan

AU - Varadharajan, Vijay

AU - Tupakula, Udaya

PY - 2016

Y1 - 2016

N2 - In this paper, we introduce an integrated security architecture that combines TPM based trust management with hypervisor level access control and intrusion detection system to provide a holistic approach for securing services hosted in virtualised environments. We describe the implementation of the security architecture in detail and demonstrate the functionality of the proposed architecture for different attack scenarios. Our architecture is able to perform dynamic attack detection and update the security policies to protect the services from the identified threats. The proposed integrated security architecture can be easily adopted to be used in cloud and distributed virtualised environments.

AB - In this paper, we introduce an integrated security architecture that combines TPM based trust management with hypervisor level access control and intrusion detection system to provide a holistic approach for securing services hosted in virtualised environments. We describe the implementation of the security architecture in detail and demonstrate the functionality of the proposed architecture for different attack scenarios. Our architecture is able to perform dynamic attack detection and update the security policies to protect the services from the identified threats. The proposed integrated security architecture can be easily adopted to be used in cloud and distributed virtualised environments.

KW - Access control

KW - Integrated security

KW - Intrusion detection

KW - Security attacks

KW - Trusted computing

KW - Virtualisation security

UR - http://www.scopus.com/inward/record.url?scp=85015147307&partnerID=8YFLogxK

U2 - 10.1109/TrustCom.2016.0049

DO - 10.1109/TrustCom.2016.0049

M3 - Conference proceeding contribution

AN - SCOPUS:85015147307

SN - 9781509032068

SP - 82

EP - 89

BT - IEEE TrustCom/BigDataSE/ISPA 2016

PB - Institute of Electrical and Electronics Engineers (IEEE)

CY - Piscataway, NJ

T2 - Joint 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications, IEEE TrustCom/BigDataSE/ISPA 2016

Y2 - 23 August 2016 through 26 August 2016

ER -

Jayarathna D, Varadharajan V , Tupakula U. Integrated security for services hosted in virtual environments. In IEEE TrustCom/BigDataSE/ISPA 2016: Proceedings of the 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 10th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Symposium on Parallel and Distributed Processing with Applications. Piscataway, NJ: Institute of Electrical and Electronics Engineers (IEEE). 2016. p. 82-89 https://doi.org/10.1109/TrustCom.2016.0049