01-15-2010, 02:08 PM
T. Ristenpart, E. Tromer, H. Shacham, and S. Savage. “Hey, You, Get Off of My Cloud! Exploring Information Leakage in Third-Party Compute Clouds.” In S. Jha and Angelos Keromytis, eds., Proceedings of CCS 2009, pages 199–212.
* * *
The paper shows that it is possible to detect the mapping of VMs to physical machines in a cloud infrastructure (e.g., EC2) and probabilistically control the residence of a VM an adversary launches. By collocating an adversary VM with a target VM on the same physical machine, the adversary may launch side channel attacks to obtain information about the target machine and potentially even some private data. The authors comment that key (secret) extraction using such side channel attacks is somewhat difficult because of the complexity of virtualized execution.
* * *
The paper shows that it is possible to detect the mapping of VMs to physical machines in a cloud infrastructure (e.g., EC2) and probabilistically control the residence of a VM an adversary launches. By collocating an adversary VM with a target VM on the same physical machine, the adversary may launch side channel attacks to obtain information about the target machine and potentially even some private data. The authors comment that key (secret) extraction using such side channel attacks is somewhat difficult because of the complexity of virtualized execution.