Title :
FPGAs for trusted cloud computing
Author :
Eguro, Ken ; Venkatesan, Ramarathnam
Author_Institution :
Embedded & Reconfigurable Comput., Microsoft Res., Redmond, WA, USA
Abstract :
FPGA manufacturers have offered devices with bitstream protection for a number of years. This feature is currently primarily used to prevent IP piracy through cloning. However, in this paper we describe how protected bitstreams can also be used to create a root of trust for the clients of cloud computing services. Unlike related software-based solutions, this hardware-based approach solves a fundamental problem that currently impedes the greater adoption of cloud computing: how to secure client data and computation from both potential external attackers and an untrusted system administrator. We examine how this approach can be applied to the specific application of handling sensitive health data. This system maintains the advantages of the cloud with minimal additional hardware. We also describe how this system can be extended to provide a more generic secure cloud architecture.
Keywords :
client-server systems; cloud computing; computer network security; data handling; data privacy; field programmable gate arrays; health care; public key cryptography; service-oriented architecture; trusted computing; FPGA manufacturers; IP piracy prevention; bitstream protection; client data security; client trust; external attackers; hardware-based approach; health data handling; secure cloud architecture; software-based solutions; trusted cloud computing; untrusted system administrator; Cloud computing; Encryption; Field programmable gate arrays; Hardware; Servers;
Conference_Titel :
Field Programmable Logic and Applications (FPL), 2012 22nd International Conference on
Conference_Location :
Oslo
Print_ISBN :
978-1-4673-2257-7
Electronic_ISBN :
978-1-4673-2255-3
DOI :
10.1109/FPL.2012.6339242
