Encrypted VM's (was Re: OT: Cloud Computing is coming to ...)

Tue Jul 20 18:27:00 UTC 2010

-----Original Message-----
From: users-bounces at lists.fedoraproject.org [mailto:users-bounces at lists.fedoraproject.org] On Behalf Of Michael Semcheski
Sent: Tuesday, July 20, 2010 6:03 PM
To: Community support for Fedora users
Subject: Encrypted VM's (was Re: OT: Cloud Computing is coming to ...)

On Tue, Jul 20, 2010 at 11:16 AM, Stephen Gallagher <sgallagh at redhat.com> wrote:
> A properly-designed cloud computing solution is one where the virtual 
> machines being hosted in the cloud can be fully encrypted so that the 
> hosting provider cannot (feasibly) glean any information from them.

I do not see a point of an encrypted guest on a third party host.

If you control the host, couldn't you grab the encryption key from the running guest's RAM?  Or, maybe you could seed the entropy that the guest sees, thus removing randomness and compromising any key generation on the guest?

I'm not saying that those things would be trivial to do - though I would guess the second time would be a lot easier for an attacker than the first.

But, it doesn't seem proper to me to have something you hneed to encrypt on a guest on an untrusted host.  (Excepting the obvious case where you're just storing a random file on the guest and never decrypting it or letting the keys into the RAM of the guest.)
--

Just in general, what's the point in having server-disks (either local or "in-the-cloud" encrypted? 
As soon as you start them up, all we be de-crypted and your system is only protected by normal security measures.

Only usefull purpose might be to give each user their own encrypted backup-storage. 
Something like a remote-tape-device...

______________________________________________________________________
Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten.

This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages.