Unikernels for Cloud Architectures

How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security

Andreas Happe, Bob Duncan, Alfred Bratterud

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)
2 Downloads (Pure)

Abstract

Unikernels allow application deployment through custom-built minimal virtual machines. The authors investigate how unikernels and their inherent minimalism benefit system security. The analysis starts with common security vulnerability classes and their possible remediation. A platonic unikernel framework is used to describe how unikernels can solve common security problems, focusing both on a micro- and macro level. This theoretical framework is matched against an existing unikernel framework, and the resulting mismatch is used as a starting point for the research areas the authors are currently working on. We demonstrate how using a single responsibility unikernel-based architectural framework could be used to reduce complexity and thus improve enterprise cloud security.
Original languageEnglish
Title of host publicationProceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk
Subtitle of host publication(COMPLEXIS 2017)
EditorsOleg Gusikhin, Víctor Méndez Muñoz , Farshad Firouzi, Dan Mønster, Victor Chang
PublisherSciTePress
Pages30-41
Number of pages12
Volume1
ISBN (Print)9789897582448
DOIs
Publication statusPublished - 24 Apr 2017
EventThe 2nd International Conference on Complexity, Future Information Systems and Risk - Holiday Inn Porto Gaia, Porto, Portugal., Porto, Portugal
Duration: 24 Apr 201726 Apr 2017
http://www.complexis.org/

Conference

ConferenceThe 2nd International Conference on Complexity, Future Information Systems and Risk
Abbreviated titleComplexis 2017
CountryPortugal
CityPorto
Period24/04/1726/04/17
Internet address

Fingerprint

Remediation
Security systems
Macros
Industry
Virtual machine

Keywords

  • Cloud Security and Privacy
  • attack surface
  • compliance
  • complexity

Cite this

Happe, A., Duncan, B., & Bratterud, A. (2017). Unikernels for Cloud Architectures: How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security. In O. Gusikhin, V. M. Muñoz , F. Firouzi, D. Mønster, & V. Chang (Eds.), Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk: (COMPLEXIS 2017) (Vol. 1, pp. 30-41). [5] SciTePress. https://doi.org/10.5220/0006282800300041

Unikernels for Cloud Architectures : How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security. / Happe, Andreas; Duncan, Bob; Bratterud, Alfred.

Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk: (COMPLEXIS 2017). ed. / Oleg Gusikhin; Víctor Méndez Muñoz ; Farshad Firouzi; Dan Mønster; Victor Chang. Vol. 1 SciTePress, 2017. p. 30-41 5.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Happe, A, Duncan, B & Bratterud, A 2017, Unikernels for Cloud Architectures: How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security. in O Gusikhin, VM Muñoz , F Firouzi, D Mønster & V Chang (eds), Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk: (COMPLEXIS 2017). vol. 1, 5, SciTePress, pp. 30-41, The 2nd International Conference on Complexity, Future Information Systems and Risk, Porto, Portugal, 24/04/17. https://doi.org/10.5220/0006282800300041
Happe A, Duncan B, Bratterud A. Unikernels for Cloud Architectures: How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security. In Gusikhin O, Muñoz VM, Firouzi F, Mønster D, Chang V, editors, Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk: (COMPLEXIS 2017). Vol. 1. SciTePress. 2017. p. 30-41. 5 https://doi.org/10.5220/0006282800300041
Happe, Andreas ; Duncan, Bob ; Bratterud, Alfred. / Unikernels for Cloud Architectures : How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security. Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk: (COMPLEXIS 2017). editor / Oleg Gusikhin ; Víctor Méndez Muñoz ; Farshad Firouzi ; Dan Mønster ; Victor Chang. Vol. 1 SciTePress, 2017. pp. 30-41
@inproceedings{16ff0a547c844548975e58ab9966091c,
title = "Unikernels for Cloud Architectures: How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security",
abstract = "Unikernels allow application deployment through custom-built minimal virtual machines. The authors investigate how unikernels and their inherent minimalism benefit system security. The analysis starts with common security vulnerability classes and their possible remediation. A platonic unikernel framework is used to describe how unikernels can solve common security problems, focusing both on a micro- and macro level. This theoretical framework is matched against an existing unikernel framework, and the resulting mismatch is used as a starting point for the research areas the authors are currently working on. We demonstrate how using a single responsibility unikernel-based architectural framework could be used to reduce complexity and thus improve enterprise cloud security.",
keywords = "Cloud Security and Privacy, attack surface, compliance, complexity",
author = "Andreas Happe and Bob Duncan and Alfred Bratterud",
note = "ACKNOWLEDGEMENTS This work was in part funded by the European Commission through grant agreement no 644962 (PRISMACLOUD).",
year = "2017",
month = "4",
day = "24",
doi = "10.5220/0006282800300041",
language = "English",
isbn = "9789897582448",
volume = "1",
pages = "30--41",
editor = "Oleg Gusikhin and {Mu{\~n}oz }, {V{\'i}ctor M{\'e}ndez} and Farshad Firouzi and Dan M{\o}nster and Victor Chang",
booktitle = "Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk",
publisher = "SciTePress",

}

TY - GEN

T1 - Unikernels for Cloud Architectures

T2 - How Single Responsibility can Reduce Complexity, Thus Improving Enterprise Cloud Security

AU - Happe, Andreas

AU - Duncan, Bob

AU - Bratterud, Alfred

N1 - ACKNOWLEDGEMENTS This work was in part funded by the European Commission through grant agreement no 644962 (PRISMACLOUD).

PY - 2017/4/24

Y1 - 2017/4/24

N2 - Unikernels allow application deployment through custom-built minimal virtual machines. The authors investigate how unikernels and their inherent minimalism benefit system security. The analysis starts with common security vulnerability classes and their possible remediation. A platonic unikernel framework is used to describe how unikernels can solve common security problems, focusing both on a micro- and macro level. This theoretical framework is matched against an existing unikernel framework, and the resulting mismatch is used as a starting point for the research areas the authors are currently working on. We demonstrate how using a single responsibility unikernel-based architectural framework could be used to reduce complexity and thus improve enterprise cloud security.

AB - Unikernels allow application deployment through custom-built minimal virtual machines. The authors investigate how unikernels and their inherent minimalism benefit system security. The analysis starts with common security vulnerability classes and their possible remediation. A platonic unikernel framework is used to describe how unikernels can solve common security problems, focusing both on a micro- and macro level. This theoretical framework is matched against an existing unikernel framework, and the resulting mismatch is used as a starting point for the research areas the authors are currently working on. We demonstrate how using a single responsibility unikernel-based architectural framework could be used to reduce complexity and thus improve enterprise cloud security.

KW - Cloud Security and Privacy

KW - attack surface

KW - compliance

KW - complexity

U2 - 10.5220/0006282800300041

DO - 10.5220/0006282800300041

M3 - Conference contribution

SN - 9789897582448

VL - 1

SP - 30

EP - 41

BT - Proceedings of the 2nd International Conference on Complexity, Future Information Systems and Risk

A2 - Gusikhin, Oleg

A2 - Muñoz , Víctor Méndez

A2 - Firouzi, Farshad

A2 - Mønster, Dan

A2 - Chang, Victor

PB - SciTePress

ER -