SPLVM Virtualized System Meetup
Host: Mossaka
- Community hosted meetup for discussing anything related to distributed systems, operating systems, database, and networking. Currently focusing on virtualization, tracking course UCSD CSE 291.
- Schedule
- Biweekly Zoom meeting on Monday at 5pm PDT
- Code of Conduct
- Please use “Raise Hands” feature on Zoom
- Welcome to unmute or comment in chat at ANY TIME!
Introduction
Security threats?
- External attacks against cloud infrastructure
- Adversarial provider spying on running VMs / data
- Cross-user attacks
- VM image attacks
- Side-channels attacks (cache attack, timing attack, etc.)
- Cloud provider attacking users by stealing user data, or infer user access patterns, or not running the right user code.
Thread model
- consider Cloud provider and infrastructure to be trusted
- adversaries are non-provider-affiliated malicious parties
- assume attackers can run and control EC2 instances
- assume attackers instances might run on the same physical hardware
- assume attackers may might manipulate shared physical resources (CPU caches, branch target buffers, network queues, etc) to gain confidential information