Publikation
Twin Clouds: An Architecture for Secure Cloud Computing
Sven Bugiel; Stefan Nürnberger; Ahmad-Reza Sadeghi; Thomas Schneider
In: Abstracts of Workshop on Cryptography and Security in Clouds. Workshop on Cryptography and Security in Clouds (CSC-2011), March 15-16, Zurich, Switzerland, 2011.
Zusammenfassung
Cloud computing promises a more cost effective enabling technology to outsource storage and computations. Existing approaches for secure outsourcing of data and arbitrary computations are either based on a single tamper-proof hardware, or based on recently proposed fully homomorphic encryption. The hardware based solutions are not scaleable, and fully homomorphic encryption is currently only of theoretical interest and very inefficient. In this paper we propose an architecture for secure outsourcing of data and arbitrary computations to an untrusted commodity cloud. In our approach, the user communicates with a trusted cloud (either a private cloud or built from multiple secure hardware modules) which encrypts and verifies the data stored and operations performed in the untrusted commodity cloud. We split the computations such that the trusted cloud is mostly used for security-critical operations in the less time-critical setup phase, whereas queries to the outsourced data are processed in parallel by the fast commodity cloud on encrypted data.