Title :
Trusted Geolocation-Aware Data Placement in Infrastructure Clouds
Author :
Paladi, Nicolae ; Aslam, Mudassar ; Gehrmann, Christian
Author_Institution :
SICS Swedish ICT, Stockholm, Sweden
Abstract :
Data geolocation in the cloud is becoming an increasingly pressing problem, aggravated by incompatible legislation in different jurisdictions and compliance requirements of data owners. In this work we present a mechanism allowing cloud users to control the geographical location of their data, stored or processed in plaintext on the premises of Infrastructure-as-a Service cloud providers. We use trusted computing principles and remote attestation to establish platform state. We enable cloud users to confine plaintext data exclusively to the jurisdictions they specify, by sealing decryption keys used to obtain plaintext data to the combination of cloud host geolocation and platform state. We provide a detailed description of the implementation as well as performance measurements on an open source cloud infrastructure platform using commodity hardware.
Keywords :
Global Positioning System; cloud computing; mobile computing; trusted computing; cloud host geolocation; commodity hardware; decryption keys; geographical location; infrastructure clouds; infrastructure-as-a service cloud providers; open source cloud infrastructure platform; plaintext data; trusted computing principles; trusted geolocation-aware data placement; Cloud computing; Computer architecture; Cryptography; Distributed databases; Geology; IP networks; Protocols; GPS; IaaS; cloud computing; data geolocation; reverse geocoding; security; trusted computing;
Conference_Titel :
Trust, Security and Privacy in Computing and Communications (TrustCom), 2014 IEEE 13th International Conference on
Conference_Location :
Beijing
DOI :
10.1109/TrustCom.2014.47
