Towards Secure Cloud Computing Architecture

– A Solution Based on Software Protection Mechanism –

 

Kazuhide Fukushima, Shinsaku Kiyomoto and Yutaka Miyake

 

KDDI R&D Laboratories, Inc.

Fujimino, Saitama, Japan

{ka-fukushima,kiyomoto,miyake}@kddilabs.jp

 

Abstract

Cloud computing grows as an important keyword to accelerate IT businesses. A feature of cloud

computing is distributed architecture based on unfixed nodes, and security risks have been highlighted

for cloud computing services. In this paper, we present a novel approach for solving the essential issue

of cloud computing: how to protect a program running in an untrusted cloud computing

environment. We apply a separation technique to the program and divide it into two pieces: a user

program and a protected program. Our security analysis shows that both internal and external attacks

require exponential computational costs; that is, our scheme is computationally secure against these

attacks.

 

Journal of Internet Services and Information Security (JISIS), 1(1): 4-17, May 2011 [pdf]