Fast, scalable and secure onloading of edge functions using AirBox

被引:46
作者
Bhardwaj, Ketan [1 ]
Shih, Ming-Wei [1 ]
Agarwal, Pragya [1 ]
Gavrilovska, Ada [1 ]
Kim, Taesoo [1 ]
Schwan, Karsten [1 ]
机构
[1] Georgia Inst Technol, Coll Comp, Atlanta, GA 30332 USA
来源
2016 FIRST IEEE/ACM SYMPOSIUM ON EDGE COMPUTING (SEC 2016) | 2016年
关键词
Edge Computing; Edge Cloud; Security; Intel SGX;
D O I
10.1109/SEC.2016.15
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
This paper argues for the utility of back-end driven onloading to the edge as a way to address bandwidth use and latency challenges for future device-cloud interactions. Supporting such edge functions (EFs) requires solutions that can provide (i) fast and scalable EF provisioning and (ii) strong guarantees for the integrity of the EF execution and confidentiality of the state stored at the edge. In response to these goals, we (i) present a detailed design space exploration of the current technologies that can be leveraged in the design of edge function platforms (EFPs); (ii) develop a solution to address security concerns of EFs that leverages emerging hardware support for OS agnostic trusted execution environments such as Intel SGX enclaves; and (iii) propose and evaluate AirBox, a platform for fast, scalable and secure onloading of edge functions.
引用
收藏
页码:14 / 27
页数:14
相关论文
共 35 条
[1]  
[Anonymous], MOBISYS 10
[2]  
[Anonymous], MSRTR201439
[3]   Shielding Applications from an Untrusted Cloud with Haven [J].
Baumann, Andrew ;
Peinado, Marcus ;
Hunt, Galen .
ACM TRANSACTIONS ON COMPUTER SYSTEMS, 2015, 33 (03)
[4]  
Bhardwaj K., TRIOS 15
[5]  
Bhardwaj K., MOBICASE 2015
[6]  
Bhardwaj K., 2015, MOBICASE 2015
[7]   Iago Attacks: Why the System Call API is a Bad Untrusted RPC Interface [J].
Checkoway, Stephen ;
Shacham, Hovav .
ACM SIGPLAN NOTICES, 2013, 48 (04) :253-263
[8]  
Chun B.-G., EUROSYS 11
[9]  
Dale W., 2014, P 9 ACM WORKSHOP MOB, DOI 10.1145/2645892.2645901
[10]  
Douceur J. R., 2008, OSDI 08, V8, P339
1234