| For the past few years, cloud computing has become the focus of information tech-nology field, which attracted widely attention from the academic, industry and govern-ment. Cloud computing is a large pool of easily usable and accessible virtualized re-sources, providing the users with software resources, computing resources and storageresources through the network. It cuts down the users’cost and improve the resources’efciency. However, with the rapid popularization of cloud computing, security issue hasbecome the critical factor which impedes its development. The elastic cloud resourcesand huge datasets processed are subject to security breaches, privacy abuses, and copy-right violations. The accidents such as service interruptions and data breaches keep theenterprises and organizations from deploying their business in the cloud. Therefore, it aurgent issue to explore the countermeasures for securing the cloud.Among these security issues in cloud computing, this thesis focuses on two topics.One is the runtime environment security of Java Virtual Machine in the cloud, and theother is Java software protection in the cloud storage. The main contributions of thisthesis are summarized as follows.(1) We propose a watermark-aware Java security runtime environment frameworkin the cloud, with the goal to mitigate the security gaps for both Java program and JavaVirtual Machine in the cloud. The framework based on Java trusted chain can be appliedto protect the Java Virtual Machine and the Java program residing in the cloud.(2) Java program resides in the cloud are subject to security breaches. We designand implement an cloud-based watermarking system to mitigate the security gaps. It canefectively defends the attackers from stealing the software and provide an clue for trac-ing, which compensates the defects that encryption cannot cover the threat of decipheredprogram. Furthemore, we employ MapReduce to conduct the large-scale watermarkingoperations in the cloud, making our cloud-based watermarking scheme feasible.(3) We present and implement a watermark-ware Java Virtual Machine. Based onthe analysis of mechanism and source code of Java Virtual Machine, we re-compile it inorder to realize its ability for recognizing the watermark and taking according response.The customized Java Virtual Machine is capable of verifying the credibility of a Java program before its running. Only trusted Java program can be executed in this Javasecurity runtime environment, while wiping out the untrusted Java program.(4) We design and implement a software watermarking prototype named TRUP,for supporting and verifying the software watermarking schemes proposed in this thesis.TRUP consists of typical Java software watermarking algorithms, including embeddingand extracting the software watermark, dynamically loading and ofoading the water-marking algorithms, intelligent recommending of the watermarking algorithms. We fur-ther applied TRUP to handle large-scale watermarking operations in the cloud, combiningwith the Hadoop framework. |
PDF Full Text Request