2009-Challenges and opportunities for virtualized security in the clouds

Keynote Talk

Challenges and Opportunities

for Virtualized Security in the Clouds

Frank Siebenlist

Argonne National Laboratory – University of Chicago

Argonne, IL, USA

franks@mcs.anl.gov

Abstract

The virtualization technologies that underlie the cloud computing infrastructures pose challenges on enforcing security policy when we have a sense of ambiguity concerning the actual physical properties of the resources. On the other hand, the virtual machine managers provide us with better sandboxing, detailed monitoring capabilities and fine-grained access control on the resource usage. As we expect the whole world to virtualize over the next 5-10 years, the presentation will present a forward-looking view on the cloudy road ahead with a focus on the associated security topics.1 Categories & Subject Descriptors: D.4.6 [OPERATING SYSTEMS] Security and Protection; K.6.5 [MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS] Security and Protection; C.2.0 [COMPUTER-COMMUNICATION NETWORKS] General --- Security and protection (e.g., firewalls)

General Terms: Security, Management, Design

Bio

Frank Siebenlist is a Senior Security Architect at the Mathematics and Computer Science Division at Argonne National Laboratory and a Fellow at the Computation Institute of the University of Chicago. Frank has a Ph.D. in Physics from the University of Amsterdam in the Netherlands. He has extensive experience with distributed computing and security. He has worked for major financial institutions (VP at Citibank and Senior Consultant at J.P. Morgan) in Hong Kong and New York. He has also worked for a number of technology companies, including start-ups in Silicon Valley (Chief Architect at DASCOM and Chief Security Architect at Eazel), and at IBM as a Senior Security Architect. He currently works on the security aspects of various DOE/NSF/NIH-funded Grid projects that deal with cancer research, climate modeling, astronomy, elementary particles, etc. Furthermore, Frank authored, influenced and contributed to numerous of security related standards at X/Open, Open Group, IETF, OMG, OGF, and OASIS.

1 This work was supported by the U.S. Dept. of Energy under contract DE-AC02-06CH11357.

Copyright is held by the author/owner(s).

SACMAT’09, June 3–5, 2009, Stresa, Italy. ACM 978-1-60558-537-6/09/06.

1

本文来源：https://www.bwwdw.com/article/0dx4.html