{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,11]],"date-time":"2025-12-11T07:33:07Z","timestamp":1765438387997,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":60,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T00:00:00Z","timestamp":1415318400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,7]]},"DOI":"10.1145\/2664168.2664180","type":"proceedings-article","created":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T17:10:54Z","timestamp":1415380254000},"page":"141-150","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":8,"title":["Inevitable Failure"],"prefix":"10.1145","author":[{"given":"Yuqiong","family":"Sun","sequence":"first","affiliation":[{"name":"Pennsylvania State University, University Park, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Giuseppe","family":"Petracca","sequence":"additional","affiliation":[{"name":"Pennsylvania State University, University Park, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Trent","family":"Jaeger","sequence":"additional","affiliation":[{"name":"Pennsylvania State University, University Park, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,7]]},"reference":[{"key":"e_1_3_2_1_2_1","unstructured":"Apache CloudStack. http:\/\/cloudstack.apache.org\/.  Apache CloudStack. http:\/\/cloudstack.apache.org\/."},{"volume-title":"http:\/\/www.argus-systems.com\/home3.shtml","year":"2008","key":"e_1_3_2_1_3_1","unstructured":"Security starts with your operating system. http:\/\/www.argus-systems.com\/home3.shtml , 2008 . Security starts with your operating system. http:\/\/www.argus-systems.com\/home3.shtml, 2008."},{"key":"e_1_3_2_1_4_1","unstructured":"Selinux\/audit2allow. http:\/\/fedoraproject.org\/wiki\/SELinux\/audit2allow.  Selinux\/audit2allow. http:\/\/fedoraproject.org\/wiki\/SELinux\/audit2allow."},{"key":"e_1_3_2_1_5_1","volume-title":"Proceedings of the 5th USENIX Security Symposium","author":"BADGER L.","year":"1995","unstructured":"BADGER , L. , STERNE , D. F. , SHERMAN , D. L. , WALKER , K. M. , AND HAGHIGHAT , S. A. A domain and type enforcement UNIX prototype . In Proceedings of the 5th USENIX Security Symposium ( 1995 ). BADGER, L., STERNE, D. F., SHERMAN, D. L., WALKER, K. M., AND HAGHIGHAT, S. A. A domain and type enforcement UNIX prototype. In Proceedings of the 5th USENIX Security Symposium (1995)."},{"key":"e_1_3_2_1_6_1","volume-title":"from BEA Systems","author":"XTS","year":"2008","unstructured":"XTS -400 Trusted Computer System , from BEA Systems , 2008 . http: \/\/www.baesystems.com\/ProductsServices\/bae_prod_csit_xts400.html. XTS-400 Trusted Computer System, from BEA Systems, 2008. http: \/\/www.baesystems.com\/ProductsServices\/bae_prod_csit_xts400.html."},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the 8th National Computer Security Conference","author":"BOEBERT W. E.","year":"1985","unstructured":"BOEBERT , W. E. , AND KAIN , R. Y. A practical alternative to hierarchical integrity policies . In Proceedings of the 8th National Computer Security Conference ( 1985 ). BOEBERT, W. E., AND KAIN, R. Y. A practical alternative to hierarchical integrity policies. In Proceedings of the 8th National Computer Security Conference (1985)."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046753"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382226"},{"key":"e_1_3_2_1_12_1","unstructured":"CVE-2012--3542. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3542.  CVE-2012--3542. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3542."},{"key":"e_1_3_2_1_13_1","unstructured":"CVE-2012--4456. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--4456.  CVE-2012--4456. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--4456."},{"key":"e_1_3_2_1_14_1","unstructured":"CVE-2014-0167. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0167.  CVE-2014-0167. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0167."},{"key":"e_1_3_2_1_15_1","volume-title":"NDSS","author":"CHEN H.","year":"2009","unstructured":"CHEN , H. , LI , N. , AND MAO , Z. Analyzing and comparing the protection quality of security enhanced operating systems . In NDSS ( 2009 ). CHEN, H., LI, N., AND MAO, Z. Analyzing and comparing the protection quality of security enhanced operating systems. In NDSS (2009)."},{"key":"e_1_3_2_1_16_1","unstructured":"Cloudlinux. http:\/\/www.cloudlinux.com\/.  Cloudlinux. http:\/\/www.cloudlinux.com\/."},{"key":"e_1_3_2_1_17_1","unstructured":"Oracle solaris 11. http:\/\/www.oracle.com\/us\/products\/servers-storage\/solaris\/solaris11\/overview\/index.html\/.  Oracle solaris 11. http:\/\/www.oracle.com\/us\/products\/servers-storage\/solaris\/solaris11\/overview\/index.html\/."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1463891.1463912"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/360051.360056"},{"key":"e_1_3_2_1_20_1","unstructured":"CVE-2012--3360. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3360.  CVE-2012--3360. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3360."},{"key":"e_1_3_2_1_21_1","unstructured":"CVE-2012--3361. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3361.  CVE-2012--3361. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3361."},{"key":"e_1_3_2_1_22_1","unstructured":"CVE-2012--3447. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3447.  CVE-2012--3447. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--3447."},{"key":"e_1_3_2_1_23_1","unstructured":"CVE-2013-0247. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0247.  CVE-2013-0247. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0247."},{"key":"e_1_3_2_1_24_1","unstructured":"CVE-2013-0270. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0270.  CVE-2013-0270. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0270."},{"key":"e_1_3_2_1_25_1","unstructured":"CVE-2014--2828. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014--2828.  CVE-2014--2828. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014--2828."},{"key":"e_1_3_2_1_26_1","unstructured":"Eucalyptus. https:\/\/www.eucalyptus.com\/.  Eucalyptus. https:\/\/www.eucalyptus.com\/."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.5555\/647253.720282"},{"key":"e_1_3_2_1_28_1","unstructured":"CVE-2014-0162. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0162.  CVE-2014-0162. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0162."},{"key":"e_1_3_2_1_29_1","volume-title":"Proceedings of the 4th Annual Linux Showcase and Conference (Oct. 2000","author":"HALLYN S. E.","year":"2000","unstructured":"HALLYN , S. E. , AND KEARNS , P. Domain and type enforcement for Linux . In Proceedings of the 4th Annual Linux Showcase and Conference (Oct. 2000 ). At http:\/\/www.sagecertification.org\/publications\/library\/proceedings\/als00\/ 2000 papers\/papers\/full_papers\/hallyn\/hallyn_html\/index.html. HALLYN, S. E., AND KEARNS, P. Domain and type enforcement for Linux. In Proceedings of the 4th Annual Linux Showcase and Conference (Oct. 2000). At http:\/\/www.sagecertification.org\/publications\/library\/proceedings\/als00\/2000papers\/papers\/full_papers\/hallyn\/hallyn_html\/index.html."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/54289.871709"},{"key":"e_1_3_2_1_31_1","unstructured":"CVE-2011--4596. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2011--4596.  CVE-2011--4596. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2011--4596."},{"key":"e_1_3_2_1_32_1","unstructured":"CVE-2013-0208. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0208.  CVE-2013-0208. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-0208."},{"key":"e_1_3_2_1_33_1","unstructured":"CVE-2014-0187. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0187.  CVE-2014-0187. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-0187."},{"key":"e_1_3_2_1_34_1","volume-title":"http:\/\/www.lids.org\/","author":"LIDS","year":"2008","unstructured":"LIDS Secure Linux System. http:\/\/www.lids.org\/ , 2008 . LIDS Secure Linux System. http:\/\/www.lids.org\/, 2008."},{"key":"e_1_3_2_1_35_1","first-page":"303","volume-title":"Proceedings of the 21st National Information Systems Security Conference (October","author":"LOSCOCCO P. A.","year":"1998","unstructured":"LOSCOCCO , P. A. , SMALLEY , S. D. , MUCKELBAUER , P. A. , TAYLOR , R. C. , TURNER , S. J. , AND FARRELL , J. F. The Inevitability of Failure: The flawed assumption of security in modern computing environments . In Proceedings of the 21st National Information Systems Security Conference (October 1998 ), pp. 303 -- 314 . LOSCOCCO, P. A., SMALLEY, S. D., MUCKELBAUER, P. A., TAYLOR, R. C., TURNER, S. J., AND FARRELL, J. F. The Inevitability of Failure: The flawed assumption of security in modern computing environments. In Proceedings of the 21st National Information Systems Security Conference (October 1998), pp. 303--314."},{"key":"e_1_3_2_1_36_1","volume-title":"SELinux by Example: Using Security-Enhanced Linux","author":"MAYER F.","year":"2006","unstructured":"MAYER , F. , MACMILLAN , K. , AND CAPLAN , D. SELinux by Example: Using Security-Enhanced Linux . Addison-Wesley , 2006 . MAYER, F., MACMILLAN, K., AND CAPLAN, D. SELinux by Example: Using Security-Enhanced Linux. Addison-Wesley, 2006."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1002\/spe.4380220805"},{"key":"e_1_3_2_1_38_1","volume-title":"April","author":"NARAINE R.","year":"2007","unstructured":"NARAINE , R. Russinovich: Malware will thrive, even with Vista's UAC , April 2007 . http:\/\/blogs.zdnet.com\/security\/?p=175. NARAINE, R. Russinovich: Malware will thrive, even with Vista's UAC, April 2007. http:\/\/blogs.zdnet.com\/security\/?p=175."},{"volume-title":"http:\/\/www. novell.com\/linux\/security\/apparmor\/","year":"2008","key":"e_1_3_2_1_39_1","unstructured":"AppArmor Linux application security. http:\/\/www. novell.com\/linux\/security\/apparmor\/ , 2008 . AppArmor Linux application security. http:\/\/www. novell.com\/linux\/security\/apparmor\/, 2008."},{"key":"e_1_3_2_1_40_1","unstructured":"Security-enhanced linux. http:\/\/www.nsa.gov\/selinux.  Security-enhanced linux. http:\/\/www.nsa.gov\/selinux."},{"key":"e_1_3_2_1_41_1","unstructured":"OpenNebula. http:\/\/opennebula.org\/.  OpenNebula. http:\/\/opennebula.org\/."},{"volume-title":"http:\/\/www.openstack.org\/\/","year":"2008","key":"e_1_3_2_1_42_1","unstructured":"OpenStack Open Source Cloud Computing Software. http:\/\/www.openstack.org\/\/ , 2008 . OpenStack Open Source Cloud Computing Software. http:\/\/www.openstack.org\/\/, 2008."},{"key":"e_1_3_2_1_43_1","unstructured":"Openstack api quick start. http:\/\/docs.openstack. org\/api\/quick-start\/content\/.  Openstack api quick start. http:\/\/docs.openstack. org\/api\/quick-start\/content\/."},{"key":"e_1_3_2_1_44_1","unstructured":"OTT A. Rsbac: Extending Linux security beyond the limits. http:\/\/www.rsbac.org\/ 2008.  OTT A. Rsbac: Extending Linux security beyond the limits. http:\/\/www.rsbac.org\/ 2008."},{"key":"e_1_3_2_1_45_1","volume-title":"Proceedings of the 2003 USENIX Security Symposium (August","author":"PROVOS N.","year":"2003","unstructured":"PROVOS , N. Improving host security with system call policies . In Proceedings of the 2003 USENIX Security Symposium (August 2003 ). PROVOS, N. Improving host security with system call policies. In Proceedings of the 2003 USENIX Security Symposium (August 2003)."},{"key":"e_1_3_2_1_46_1","volume-title":"Proceedings of the USENIX Security Symposium (Aug.","author":"PROVOS N.","year":"2003","unstructured":"PROVOS , N. , FRIEDL , M. , AND HONEYMAN , P. Preventing privilege escalation . In Proceedings of the USENIX Security Symposium (Aug. 2003 ). PROVOS, N., FRIEDL, M., AND HONEYMAN, P. Preventing privilege escalation. In Proceedings of the USENIX Security Symposium (Aug. 2003)."},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653687"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1109\/PROC.1975.9939"},{"key":"e_1_3_2_1_49_1","volume-title":"Proceedings of the National Computer Security Conference","author":"SCHELL R.","year":"1985","unstructured":"SCHELL , R. , TAO , T. , AND HECKMAN , M. Designing the GEMSOS security kernel for security and performance . In Proceedings of the National Computer Security Conference ( 1985 ). SCHELL, R., TAO, T., AND HECKMAN, M. Designing the GEMSOS security kernel for security and performance. In Proceedings of the National Computer Security Conference (1985)."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.5555\/646648.759411"},{"key":"e_1_3_2_1_51_1","unstructured":"Selinux\/mls. http:\/\/fedoraproject.org\/wiki\/SELinux\/MLS.  Selinux\/mls. http:\/\/fedoraproject.org\/wiki\/SELinux\/MLS."},{"key":"e_1_3_2_1_52_1","unstructured":"SUN MICROSYSTEMS. Trusted Solaris 8 Operating System. http:\/\/www.sun.com\/software\/solaris\/trustedsolaris\/ Feb. 2006.  SUN MICROSYSTEMS. Trusted Solaris 8 Operating System. http:\/\/www.sun.com\/software\/solaris\/trustedsolaris\/ Feb. 2006."},{"key":"e_1_3_2_1_53_1","unstructured":"CVE-2012--4406. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--4406.  CVE-2012--4406. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2012--4406."},{"volume-title":"http:\/\/oss.tresys.com\/projects\/refpolicy","year":"2008","key":"e_1_3_2_1_54_1","unstructured":"Reference Policy. http:\/\/oss.tresys.com\/projects\/refpolicy , 2008 . Reference Policy. http:\/\/oss.tresys.com\/projects\/refpolicy, 2008."},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382228"},{"key":"e_1_3_2_1_56_1","first-page":"973","volume-title":"Proceedings of the 23rd USENIX Security Symposium (Aug.","author":"VIJAYAKUMAR H.","year":"2014","unstructured":"VIJAYAKUMAR , H. , GE , X. , PAYER , M. , AND JAEGER , T. JIGSAW : Protecting resource access by inferring programmer expectations . In Proceedings of the 23rd USENIX Security Symposium (Aug. 2014 ), pp. 973 -- 988 . VIJAYAKUMAR, H., GE, X., PAYER, M., AND JAEGER, T. JIGSAW: Protecting resource access by inferring programmer expectations. In Proceedings of the 23rd USENIX Security Symposium (Aug. 2014), pp. 973--988."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1145\/2465351.2465358"},{"key":"e_1_3_2_1_58_1","first-page":"156","volume-title":"Proceedings of the 2001 IEEE Symposium on Security and Privacy (Washington, DC, USA, 2001), SP '01, IEEE Computer Society","author":"WAGNER D.","unstructured":"WAGNER , D. , AND DEAN , D. Intrusion detection via static analysis . In Proceedings of the 2001 IEEE Symposium on Security and Privacy (Washington, DC, USA, 2001), SP '01, IEEE Computer Society , pp. 156 --. WAGNER, D., AND DEAN, D. Intrusion detection via static analysis. In Proceedings of the 2001 IEEE Symposium on Security and Privacy (Washington, DC, USA, 2001), SP '01, IEEE Computer Society, pp. 156--."},{"key":"e_1_3_2_1_59_1","doi-asserted-by":"publisher","DOI":"10.1145\/586110.586145"},{"key":"e_1_3_2_1_60_1","first-page":"15","volume-title":"Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference","author":"WATSON R. N.","year":"2001","unstructured":"WATSON , R. N. M. Trusted BSD : Adding trusted operating system features to FreeBSD . In Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference ( 2001 ), pp. 15 -- 28 . WATSON, R. N. M. TrustedBSD: Adding trusted operating system features to FreeBSD. In Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference (2001), pp. 15--28."},{"key":"e_1_3_2_1_61_1","first-page":"17","volume-title":"Proceedings of the 11th USENIX Security Symposium (August","author":"WRIGHT C.","year":"2002","unstructured":"WRIGHT , C. , COWAN , C. , SMALLEY , S. , MORRIS , J. , AND KROAH-HARTMAN , G. Linux Security Modules: General security support for the Linux kernel . In Proceedings of the 11th USENIX Security Symposium (August 2002 ), pp. 17 -- 31 . WRIGHT, C., COWAN, C., SMALLEY, S., MORRIS, J., AND KROAH-HARTMAN, G. Linux Security Modules: General security support for the Linux kernel. In Proceedings of the 11th USENIX Security Symposium (August 2002), pp. 17--31."},{"key":"e_1_3_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043576"},{"key":"e_1_3_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516741"}],"event":{"name":"CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Scottsdale Arizona USA","acronym":"CCS'14"},"container-title":["Proceedings of the 6th edition of the ACM Workshop on Cloud Computing Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2664168.2664180","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2664168.2664180","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:12:01Z","timestamp":1750227121000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2664168.2664180"}},"subtitle":["The Flawed Trust Assumption in the Cloud"],"short-title":[],"issued":{"date-parts":[[2014,11,7]]},"references-count":60,"alternative-id":["10.1145\/2664168.2664180","10.1145\/2664168"],"URL":"https:\/\/doi.org\/10.1145\/2664168.2664180","relation":{},"subject":[],"published":{"date-parts":[[2014,11,7]]},"assertion":[{"value":"2014-11-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}