TY  - CHAP
U1  - Konferenzveröffentlichung
A1  - Zeiser, Maximilian
A1  - Betz, Johann-Wolfram
A1  - Westhoff, Dirk
T1  - Cache Covert-Channel Mitigation in Cloud Virtualization with XEN's Credit Scheduler
T2  - 2017 IEEE Global Communications Conference (GLOBECOM) : Proceedings
N2  - Covert- and side-channels as well as techniques to establish them in cloud computing are in focus of research for quite some time. However, not many concrete mitigation methods have been developed and even less have been adapted and concretely implemented by cloud providers. Thus, we recently conceptually proposed C 3 -Sched a CPU scheduling based approach to mitigate L2 cache covert-channels. Instead of flushing the cache on every context switch, we schedule trusted virtual machines to create noise which prevents potential covert-channels. Additionally, our approach aims on preserving performance by utilizing existing instead of artificial workload while reducing covert-channel related cache flushes to cases where not enough noise has been achieved. In this work we evaluate cache covert-channel mitigation and performance impact of our integration of C 3 -Sched in the XEN credit scheduler. Moreover, we compare it to naive solutions and more competitive approaches.
Y1  - 2018
SN  - 978-1-5090-5019-2 (digital)
SB  - 978-1-5090-5019-2 (digital)
SN  - 978-1-5090-5020-8 (Print on Demand)
SB  - 978-1-5090-5020-8 (Print on Demand)
U6  - https://doi.org/10.1109/GLOCOM.2017.8253984
DO  - https://doi.org/10.1109/GLOCOM.2017.8253984
SP  - 7
S1  - 7
PB  - IEEE Xplore
ER  -