Title :
Physical attack protection with human-secure virtualization in data centers
Author :
Szefer, Jakub ; Jamkhedkar, Pramod ; Chen, Yu-Yuan ; Lee, Ruby B.
Author_Institution :
Dept. of Electr. Eng., Princeton Univ., Princeton, NJ, USA
Abstract :
Cloud computing-based data centers, which hold a large amount of customer data, are vulnerable to physical attacks and insider threats. Current protection and defense mechanisms for security of data held in data centers are either completely physical (sensors, barriers, etc.) or completely cyber (firewalls, encryption, etc.). In this paper we propose a novel cyber-physical security defense for cloud computing-based data centers against physical attacks. In our system, physical sensors detect an impending physical/human attack which triggers cyber defenses to protect or mitigate the attack. The key to the cyber defenses is that in cloud computing data centers the data is loosely coupled with the underlying physical hardware, and can be moved/migrated to other physical hardware in the presence of an attack. In this paper we propose a model for coupling such cyber defenses with physical attack-detection sensors. We further describe a preliminary architecture for building such a system with today´s cloud computing infrastructure.
Keywords :
cloud computing; computer centres; embedded systems; security of data; virtual machines; virtualisation; cloud computing; cyber-physical security defense; data center; data security; human-secure virtualization; physical attack detection sensor; physical attack protection; Cryptography; Sensor systems; Servers; Software; Virtual machining; data center; moving target defense; physical attacks;
Conference_Titel :
Dependable Systems and Networks Workshops (DSN-W), 2012 IEEE/IFIP 42nd International Conference on
Conference_Location :
Boston, MA
Print_ISBN :
978-1-4673-2264-5
Electronic_ISBN :
978-1-4673-2265-2
DOI :
10.1109/DSNW.2012.6264664
