SPLVM Virtualized System Meetup

Host: Mossaka

  1. Community hosted meetup for discussing anything related to distributed systems, operating systems, database, and networking. Currently focusing on virtualization, tracking course UCSD CSE 291.
  2. Schedule
  3. Biweekly Zoom meeting on Monday at 5pm PDT
  4. Code of Conduct
  5. Please use “Raise Hands” feature on Zoom
  6. Welcome to unmute or comment in chat at ANY TIME!

Untitled


Introduction

Untitled

Security threats?

  1. External attacks against cloud infrastructure
  2. Adversarial provider spying on running VMs / data
  3. Cross-user attacks
    1. VM image attacks
    2. Side-channels attacks (cache attack, timing attack, etc.)
  4. Cloud provider attacking users by stealing user data, or infer user access patterns, or not running the right user code.

Thread model

  1. consider Cloud provider and infrastructure to be trusted
  2. adversaries are non-provider-affiliated malicious parties
  3. assume attackers can run and control EC2 instances
  4. assume attackers instances might run on the same physical hardware
  5. assume attackers may might manipulate shared physical resources (CPU caches, branch target buffers, network queues, etc) to gain confidential information