Advances, Systems and Applications
From: Secure VM management with strong user binding in semi-trusted clouds
Key | Created by | Stored in | Purpose |
---|---|---|---|
Disk encryption key | User | Client | Encrypt a virtual disk |
Session key | Client | Client | Encrypt a VM descriptor, a hypercall automaton, and a command result |
Public key | Provider | Key server | Encrypt a disk encryption key and a session key |
Private key | Provider | Hypervisor | Decrypt a disk encryption key and a session key |