FBCrypt

Secure out-of-band Remote Management System in IaaS

Download this project as a .zip file Download this project as a tar.gz file

Overview

FBCrypt prevents information leakage via the management VM in out-of-band remote management. FBCrypt encrypts the inputs and outputs between a VNC client and a user VM using the virtual machine monitor (VMM). Sensitive information is protected against the management VM between them. The VMM intercepts the reads of virtual devices by a user VM and decrypts the inputs, whereas it intercepts the updates of a framebuffer by a user VM and encrypts the pixel data.

System Requirements

FBCrypt supports para-virtualized and fully-virtualized guest operating systems in Xen and FBCrypt is not necessary to modificate DomainU.

Publication

Dependable and Secure Remote Management in IaaS Clouds

Report

Please send e-mail egawan_at_ksl.ci.kyutech.ac.jp

Link

KSL -Kernels & Systems Lab-