Security in Virtualized Cloud Computing Environment

Virtualization technology has been widely adopted into cloud and enterprise computing environments. While virtualization can improve security in shared cloud infrastructures through greater isolation between virtual machines (VMs), and more transparent malware analysis and intrusion detection, it also gives rise to new privacy and security challenges. This project aims to advance the state-of-the-art in privacy-preserving and secure virtualization technologies such that users of a cloud infrastructure can expect tangible guarantees on the lifetime and accessibility of their confidential data.

Project Members

Publications

p> Quick Eviction of Virtual Machines Through Proactive Live Snapshots, Dinuni Fernando, Hardik Bagdi, Yaohui Hu, Ping Yang, Kartik Gopalan, Charles Kamhoua, and Kevin Kwiat, 9th IEEE/ACM International Conference on Utility and Cloud Computing, 2016 (Acceptance rate: 18%) [pdf]

Privacy-preserving Virtual Machines, Tianlin Li, Yaohui Hu, Ping Yang, Kartik Gopalan, the 31th Annual Computer Security Applications Conference (ACSAC), 2015 (Acceptance rate: 24.5%) [pdf]

Performance Analysis of Encryption in Securing the Live Migration of Virtual Machines, Yaohui Hu, Sanket Panhale, Tianlin Li, Emine Ugur Kaynar, Danny Chan, Umesh Deshpande, Ping Yang Kartik Gopalan, the 8th IEEE International Conference on Cloud Computing, applications track, in press, 2015 (Acceptance rate: 20%)

Privacy-preserving Virtual Machine Checkpointing Mechanism, by Mikhail Gofman, Ruiqi Luo, Chad Wyszynski, Yaohui Hu, Ping Yang, and Kartik Gopalan, Special Issue on Information Assurance and System Security in Cloud Computing, Journal of Cloud Computing. [pdf]

An Application-Level Approach for Privacy-preserving Virtual Machine Checkpointing, Yaohui Hu, Tianlin Li, Ping Yang, and Kartik Gopalan, the 6th IEEE International Conference on Cloud Computing, research track, pages 59--66, © IEEE press, 2013 (Acceptance rate: 19%) [pdf]

SPARC: A Security and Privacy Aware Virtual Machine Checkpointing Mechanism, Mikhail I. Gofman, Ruiqi Luo, Ping Yang and Kartik Gopalan, Proceedings of the 10th annual ACM Workshop on Privacy in the Electronic Society (WPES), in conjunction with the ACM Conference on Computer and Communications Security (CCS), full paper, © ACM Press, 2011. (Acceptance rate of full paper: 16%). pdf

A case for Secure Virtual Append-only Storage for Virtual Machines , Zhao Lin, Kartik Gopalan, and Ping Yang, International Workshop on Security in Cloud Computing (SCC), in conjunction with ICPP, © IEEE Press, 2010.