Abstract
Memory deduplication allows cloud infrastructure
providers to increase the profit of memory resources by
taking advantage of the redundant nature of virtual machines footprint. Although it is an important feature to manage the memory resources of a cloud system efficiently, unfortunately, it enables different types of side-channel attacks which, in practice, means disabling memory deduplication. In this paper, we present Slicedup, a tenant-aware memory deduplication mechanism that prevents side-channel attacks. Our proposal enables cloud providers to get the deduplication saving benefits while preventing side-channel attacks among tenants. Since Slicedup is a design-solution, it can be implemented in any
operating system, regardless of its version, architecture or any other system dependence. Finally, we show how Slicedup prevents side-channel attacks while providing similar memory savings when the number of tenants per physical host is low.
providers to increase the profit of memory resources by
taking advantage of the redundant nature of virtual machines footprint. Although it is an important feature to manage the memory resources of a cloud system efficiently, unfortunately, it enables different types of side-channel attacks which, in practice, means disabling memory deduplication. In this paper, we present Slicedup, a tenant-aware memory deduplication mechanism that prevents side-channel attacks. Our proposal enables cloud providers to get the deduplication saving benefits while preventing side-channel attacks among tenants. Since Slicedup is a design-solution, it can be implemented in any
operating system, regardless of its version, architecture or any other system dependence. Finally, we show how Slicedup prevents side-channel attacks while providing similar memory savings when the number of tenants per physical host is low.
Original language | English |
---|---|
Title of host publication | UBICOMM 2018 |
Subtitle of host publication | The Twelfth International Conference on Mobile Ubiquitous Computing, Systems, Services and Technologies |
Editors | Claudio de Castro Monteiro, Konstantinos Chatzikokolakis, Carlos Henrique Correa Tolentino |
Publisher | International Academy, Research, and Industry Association |
Pages | 15-20 |
Number of pages | 6 |
ISBN (Print) | 9781612086767 |
Publication status | Published - 18 Nov 2018 |
Event | The Twelfth International Conference on Advanced Engineering Computing and Applications in Sciences - NOVOTEL Athenes Hotel, Athens, Greece Duration: 18 Nov 2018 → 22 Nov 2018 https://www.iaria.org/conferences2018/ADVCOMP18.html |
Publication series
Name | UBICOMM International Conference on Mobile Ubiquitous Computing, Systems, Services and Technologies |
---|---|
Publisher | IARIA |
Volume | 2018 |
ISSN (Print) | 2308-4278 |
Conference
Conference | The Twelfth International Conference on Advanced Engineering Computing and Applications in Sciences |
---|---|
Abbreviated title | ADVCOMP 2018 |
Country/Territory | Greece |
City | Athens |
Period | 18/11/18 → 22/11/18 |
Internet address |
Keywords
- Cloud
- Memory Deduplication
- Information Security
- Memory Management
- Virtualisation