Information flow control in cloud computing

Ruoyu Wu, Gail-Joon Ahn, Hongxin Hu, Mukesh Singhal

Research output: Chapter in Book/Report/Conference proceedingConference contribution

45 Scopus citations

Abstract

Cloud computing is an emerging computing paradigm where computing resources are provided as services over Internet while residing in a large data center. Even though it enables us to dynamically provide servers with the ability to address a wide range of needs, this paradigm brings forth many new challenges for the data security and access control as users outsource their sensitive data to clouds, which are beyond the same trusted domain as data owners. A fundamental problem is the existence of insecure information flows due to the fact that a service provider can access multiple virtual machines in clouds. Sensitive information may be leaked to unauthorized customers and such critical information flows could raise conflict-of-interest issues in cloud computing. In this paper, we propose an approach to enforce the information flow policies at Infrastructure-as-a-Service (IaaS) layer in a cloud computing environment. Especially, we adopt Chinese Wall policies to address the problems of insecure information flow. We implement a proof-of-concept prototype system based on Eucalyptus open source packages to show the feasibility of our approach. This system facilitates the cloud management modules to resolve the conflict-of-interest issues for service providers in clouds.

Original languageEnglish (US)
Title of host publicationProceedings of the 6th International Conference on Collaborative Computing
Subtitle of host publicationNetworking, Applications and Worksharing, CollaborateCom 2010
StatePublished - Dec 1 2010
Event6th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2010 - Chicago, IL, United States
Duration: Oct 9 2010Oct 12 2010

Publication series

NameProceedings of the 6th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2010

Other

Other6th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2010
CountryUnited States
CityChicago, IL
Period10/9/1010/12/10

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications

Fingerprint Dive into the research topics of 'Information flow control in cloud computing'. Together they form a unique fingerprint.

  • Cite this

    Wu, R., Ahn, G-J., Hu, H., & Singhal, M. (2010). Information flow control in cloud computing. In Proceedings of the 6th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2010 [5767047] (Proceedings of the 6th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2010).