Research Of Trusted Virtual Storage In Cloud Computing

In age of the internet with the rapid growth in the amount of information and data, cloud computing become a hot research field in industry and academia. Cloud computing is a new computing model which can run the large computing on the various computing resource via network and can dynamically allocate configuration, deploy, redeploy and cancel the cloud services depending on customers' requirements based on virtualization technologies. Cloud providers may offer services at various layers of the software stack. One type that this paper focuses on is Infrastructure as a Service (IaaS), such as Amazon EC2 base on Xen.Companies utilizing the IaaS cloud computing can gain many benefits in reducing their IT expenses and overhead. In reality, however, this is rarely done because of security concerns, especially storage security of insider attacks. Storage virtualization is a significant part of the cloud computing. A major challenge in solving such concerns is to provide a trusted storage service in cloud computing environment with the trusted computing technical. But recently trusted computing specification under the virtual computing environment does not involve the trustworthiness of virtual storage.To address this challenge, the this paper firstly makes the in-depth study in storage virtualization of Xen virtual machine monitor and trusted computing technologies, and summarizes the advantages and disadvantages of recently research. Then we present novel trusted storage architecture, Trusted Virtual Block Storage (TVBS) System, for storage virtualization in IaaS cloud computing based on Xen virtualization and Trusted Computing technologies. Our system aims at constructing a trusted virtual storage system in the cloud computing environment, which has the features of reliability, flexibility, scalability and trustworthiness.We firstly design and implement the Trusted Virtual Block Storage (TVBS) System based on virtualization and trusted computing technologies, which is consist of TVBD manager, TVBD master and TVBD driver. The TVBD is the core component of the TVBS system, which have the function of integrity measurement and reporting, self-encryption and logging. TVBS makes virtual block device like a trusted physical block device to user and extends host TPM trust into the computing environment within all virtual block devices. For improving the TVBS, we then design and implement the TVBS client system in Windows.The results of the evaluation and security analysis prove that our TVBS system satisfied the requirement of efficient and secure storage in IaaS cloud computing.