Towards Secure Cloud Computing Architecture
– A Solution Based on Software Protection Mechanism –
Kazuhide Fukushima, Shinsaku
Kiyomoto and Yutaka Miyake
KDDI R&D Laboratories, Inc.
Fujimino, Saitama, Japan
{ka-fukushima,kiyomoto,miyake}@kddilabs.jp
Abstract
Cloud computing grows as an important keyword to
accelerate IT businesses. A feature of cloud
computing is distributed architecture based on unfixed
nodes, and security risks have been highlighted
for cloud computing services. In this paper, we present a
novel approach for solving the essential issue
of cloud computing: how to protect a program running in
an untrusted cloud computing
environment. We apply a separation technique to the
program and divide it into two pieces: a user
program and a protected program. Our security analysis
shows that both internal and external attacks
require exponential computational costs; that is, our
scheme is computationally secure against these
attacks.
Journal of Internet
Services and Information Security (JISIS), 1(1):
4-17, May 2011 [pdf]