Facial reconstruction

Search LJMU Research Online

Browse Repository | Browse E-Theses

BUILDING TRUST IN CLOUD COMPUTING -ISOLATION IN CONTAINER BASED VIRTUALISATION

Alobaidan, I (2019) BUILDING TRUST IN CLOUD COMPUTING -ISOLATION IN CONTAINER BASED VIRTUALISATION. Doctoral thesis, Liverpool John Moores University.

[img]
Preview
Text
2019ibrahimphd.pdf.pdf - Published Version

Download (3MB) | Preview

Abstract

Container-based virtualisation has weak isolation compare with traditional VMs. Container-based virtualisation is based on kernel OS. Share kernel OS could increase the possibility of attacks. Therefore, the container-based virtualisation provides weak isolation. The lack of isolation from the host could be increase security threats on the container-based virtualisation. The attacker could gain access to all system in the container-based virtualisation because share the kernel OS. The container is a good idea to isolate the applications. However, container-based virtualisation does not provide isolation for users within containers. Therefore, each user can gain all container resources if the user gains access to the container. Cloud computing is revolutionizing many ecosystems through offering companies computing resources that are easy to use, connect, configure, and are automatic and chosen to a suitable scale. In this project, a prototype that could represent a real world data centre is implemented by using container-based virtualisation. TAIC allows each user in the system can perform particular actions within the container. Each user should have permission to do specific tasks within the containers. Only authorised users can access the resources within the containers that lead to making the user data availability. Set of rules using in this architecture that responsible for protecting user data and making it privacy. User data could not be changed by other users that make the user data integrity. Secure containers lead to build a secure environment that could be used in cloud computing and build trust relationships between cloud service provider and users. This architecture modification raises a wide range of security and privacy issues that need to be put into consideration. Isolation in container-based virtualisation is a critical issue. Therefore, the thesis will also present a novel Trust Architecture for Isolation in Containers (TAIC) system to protect the containers from malicious guests and isolate users within the containers to boost the security of data that is stored in them through provide policies that allow each user to perform a specific tasks within containers and provision of data protection and security to cloud computing. Further, due to the centralised nature of data stored in cloud infrastructures, my proposed design will minimise data leakage and improve monitoring.

Item Type: Thesis (Doctoral)
Uncontrolled Keywords: Cloud computing; Container isolation; container virtualisation
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Divisions: Computer Science & Mathematics
Date Deposited: 16 Dec 2019 09:37
Last Modified: 03 Jan 2023 14:25
DOI or ID number: 10.24377/LJMU.t.00011892
Supervisors: Mackay, M, Shone, N and Bob, A
URI: https://researchonline.ljmu.ac.uk/id/eprint/11892
View Item View Item