Home Publications Research Grants Inventions & Patents Awards Additional Research Activities Faculties & Institutions Research Areas

TrApps: Secure compartments in the evil cloud

Brenner S, Goltzsche D, Kapitza R (2017)

---

Publication Type: Conference contribution

Publication year: 2017

Publisher: Association for Computing Machinery, Inc

Conference Proceedings Title: Proceedings of the 1st International Workshop on Security and Dependability of Multi-Domain Infrastructures, XDOM0 2017 - Co-located with European Conference on Computer Systems, EuroSys 2017

Event location: Belgrade, SRB

ISBN: 9781450349376

DOI: 10.1145/3071064.3071069

Abstract

The cloud computing paradigm enables the flexible and scalable outsourcing of workloads. However, cloud customers are often reluctant to entrust their sensitive data with cloud providers. This is due to the fact that the infrastructure is owned by another company and a resulting loss of control. With the recent advent of powerful ARM hardware targeted for data centres, there is the opportunity of using trusted execution technology provided by ARM TrustZone to enhance the protection of cloud customer's data. In this paper we propose TrApps, a secure platform for general-purpose trusted execution in an untrusted cloud with multiple isolated tenants based on the ARM TrustZone technology. Our system targets the parallel execution of partitioned applications of distinct tenants with lean security-sensitive components, and is based on a minimal trusted code base in the secure world of ARM TrustZone when compared to similar systems. In our evaluation we show the feasibility of our approach, and demonstrate its performance with trusted execution of memcached with an overhead of only 36:9% compared to the vanilla implementation and execution.

Authors with CRIS profile

Involved external institutions

How to cite

APA:

Brenner, S., Goltzsche, D., & Kapitza, R. (2017). TrApps: Secure compartments in the evil cloud. In Proceedings of the 1st International Workshop on Security and Dependability of Multi-Domain Infrastructures, XDOM0 2017 - Co-located with European Conference on Computer Systems, EuroSys 2017. Belgrade, SRB: Association for Computing Machinery, Inc.

MLA:

Brenner, Stefan, David Goltzsche, and Rüdiger Kapitza. "TrApps: Secure compartments in the evil cloud." Proceedings of the 1st International Workshop on Security and Dependability of Multi-Domain Infrastructures, XDOM0 2017, Belgrade, SRB Association for Computing Machinery, Inc, 2017.

BibTeX: Download