{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T20:51:11Z","timestamp":1759092671129,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":38,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,3]],"date-time":"2014-11-03T00:00:00Z","timestamp":1414972800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000144","name":"Division of Computer and Network Systems","doi-asserted-by":"publisher","award":["CNS-1420815, CNS-1441724, CCF-1408803"],"award-info":[{"award-number":["CNS-1420815, CNS-1441724, CCF-1408803"]}],"id":[{"id":"10.13039\/100000144","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000143","name":"Division of Computing and Communication Foundations","doi-asserted-by":"publisher","award":["CNS-1420815, CNS-1441724, CCF-1408803"],"award-info":[{"award-number":["CNS-1420815, CNS-1441724, CCF-1408803"]}],"id":[{"id":"10.13039\/100000143","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,3]]},"DOI":"10.1145\/2670979.2670989","type":"proceedings-article","created":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T17:10:54Z","timestamp":1415380254000},"page":"1-13","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["On the Control Plane of a Self-service Cloud Platform"],"prefix":"10.1145","author":[{"given":"Shakeel","family":"Butt","sequence":"first","affiliation":[{"name":"Rutgers University and NVidia Inc."}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vinod","family":"Ganapathy","sequence":"additional","affiliation":[{"name":"Rutgers University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abhinav","family":"Srivastava","sequence":"additional","affiliation":[{"name":"AT&T Labs--Research"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,3]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"vmitools -- Virtual machine introspection tools. http:\/\/code.google.com\/p\/vmitools\/.  vmitools -- Virtual machine introspection tools. http:\/\/code.google.com\/p\/vmitools\/."},{"key":"e_1_3_2_1_2_1","volume-title":"September","author":"Guard Extensions Programming Reference Intel Software","year":"2013","unstructured":"Intel Software Guard Extensions Programming Reference . http:\/\/software.intel.com\/sites\/default\/files\/329298-001.pdf , September 2013 . Publication number 329298-001US. Intel Software Guard Extensions Programming Reference. http:\/\/software.intel.com\/sites\/default\/files\/329298-001.pdf, September 2013. Publication number 329298-001US."},{"key":"e_1_3_2_1_3_1","volume-title":"Operating Systems Design and Implementation (OSDI)","author":"Ben-Yahuda M.","year":"2010","unstructured":"M. Ben-Yahuda , M. D. Day , Z. Dubitsky , M. Factor , N. Har'El , A. Gordon , A. Liguori , O. Wasserman , and B. Yassour . The Turtles project: Design and implementation of nested virtualization . In Operating Systems Design and Implementation (OSDI) , 2010 . M. Ben-Yahuda, M. D. Day, Z. Dubitsky, M. Factor, N. Har'El, A. Gordon, A. Liguori, O. Wasserman, and B. Yassour. The Turtles project: Design and implementation of nested virtualization. In Operating Systems Design and Implementation (OSDI), 2010."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2038916.2038924"},{"key":"e_1_3_2_1_5_1","volume-title":"USENIX Security Symposium","author":"Berger S.","year":"2006","unstructured":"S. Berger , R. Caceres , K. Goldman , R. Perez , R. Sailer , and L. van Door . vTPM : Virtualizing the Trusted Platform Module . In USENIX Security Symposium , 2006 . S. Berger, R. Caceres, K. Goldman, R. Perez, R. Sailer, and L. van Door. vTPM: Virtualizing the Trusted Platform Module. In USENIX Security Symposium, 2006."},{"key":"e_1_3_2_1_6_1","unstructured":"S. Butt. {Xen-devel} Bidirectional network throughput for netback July 2013. http:\/\/lists.xen.org\/archives\/html\/xen-devel\/2013-07\/msg02709.html.  S. Butt. {Xen-devel} Bidirectional network throughput for netback July 2013. http:\/\/lists.xen.org\/archives\/html\/xen-devel\/2013-07\/msg02709.html."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382226"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/2451512.2451546"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043575"},{"key":"e_1_3_2_1_10_1","volume-title":"Networked Systems Design and Implementation (NSDI)","author":"Cully B.","year":"2008","unstructured":"B. Cully , G. Lefebvre , D. Meyer , M. Feeley , N. Hutchinson , and A. Warfield . Remus: High availability via asynchronous virtual machine replication . In Networked Systems Design and Implementation (NSDI) , 2008 . B. Cully, G. Lefebvre, D. Meyer, M. Feeley, N. Hutchinson, and A. Warfield. Remus: High availability via asynchronous virtual machine replication. In Networked Systems Design and Implementation (NSDI), 2008."},{"key":"e_1_3_2_1_11_1","unstructured":"CVE-2007-4993. Xen guest root escapes to dom0 via pygrub.  CVE-2007-4993. Xen guest root escapes to dom0 via pygrub."},{"key":"e_1_3_2_1_12_1","unstructured":"CVE-2007-5497. Integer overflows in libext2fs in e2fsprogs.  CVE-2007-5497. Integer overflows in libext2fs in e2fsprogs."},{"key":"e_1_3_2_1_13_1","unstructured":"CVE-2008-0923. Directory traversal vulnerability in the shared folders feature for VMWare.  CVE-2008-0923. Directory traversal vulnerability in the shared folders feature for VMWare."},{"key":"e_1_3_2_1_14_1","unstructured":"CVE-2008-1943. Buffer overflow in the backend of XenSource Xen paravirtualized frame buffer.  CVE-2008-1943. Buffer overflow in the backend of XenSource Xen paravirtualized frame buffer."},{"key":"e_1_3_2_1_15_1","unstructured":"CVE-2008-2100. VMWare buffer overflows in VIX API let local users execute arbitrary code in host OS.  CVE-2008-2100. VMWare buffer overflows in VIX API let local users execute arbitrary code in host OS."},{"key":"e_1_3_2_1_16_1","unstructured":"Gartner. Assesing the Security Risks of Cloud Computing. http:\/\/www.gartner.com\/DisplayDocument?id=685308.  Gartner. Assesing the Security Risks of Cloud Computing. http:\/\/www.gartner.com\/DisplayDocument?id=685308."},{"key":"e_1_3_2_1_17_1","unstructured":"iperf3. http:\/\/code.google.com\/p\/iperf\/.  iperf3. http:\/\/code.google.com\/p\/iperf\/."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2012.6195719"},{"key":"e_1_3_2_1_19_1","volume-title":"BlackHat USA","author":"Kortchinsky K.","year":"2009","unstructured":"K. Kortchinsky . Hacking 3D (and breaking out of VMWare) . In BlackHat USA , 2009 . K. Kortchinsky. Hacking 3D (and breaking out of VMWare). In BlackHat USA, 2009."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSNW.2011.5958796"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046754"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2014.6848123"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.17"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1346256.1346278"},{"key":"e_1_3_2_1_25_1","volume-title":"Secure and Flexible Monitoring of Virtual Machines. In Annual Computer Security Applications Conference (ACSAC)","author":"Payne B.","year":"2007","unstructured":"B. Payne , M. Carbone , and W. Lee . Secure and Flexible Monitoring of Virtual Machines. In Annual Computer Security Applications Conference (ACSAC) , 2007 . B. Payne, M. Carbone, and W. Lee. Secure and Flexible Monitoring of Virtual Machines. In Annual Computer Security Applications Conference (ACSAC), 2007."},{"key":"e_1_3_2_1_26_1","volume-title":"HotNets","author":"Pfaff B.","year":"2009","unstructured":"B. Pfaff , J. Pettit , K. Amidon , M. Casado , T. Koponen , and S. Shenker . Extending networking into the virtualization layer . In HotNets , 2009 . B. Pfaff, J. Pettit, K. Amidon, M. Casado, T. Koponen, and S. Shenker. Extending networking into the virtualization layer. In HotNets, 2009."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2486001.2486022"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653687"},{"key":"e_1_3_2_1_29_1","volume-title":"USENIX Security Symposium","author":"Sailer R.","year":"2004","unstructured":"R. Sailer , X. Zhang , T. Jaeger , and L. van Doorn . Design and implementation of a TCG-based integrity measurement architecture . In USENIX Security Symposium , 2004 . R. Sailer, X. Zhang, T. Jaeger, and L. van Doorn. Design and implementation of a TCG-based integrity measurement architecture. In USENIX Security Symposium, 2004."},{"key":"e_1_3_2_1_30_1","volume-title":"USENIX Security Symposium","author":"Santos N.","year":"2012","unstructured":"N. Santos , R. Rodrigues , K. Gummadi , and S. Saroiu . Policy-sealed data: A new abstraction for building trusted cloud services . In USENIX Security Symposium , 2012 . N. Santos, R. Rodrigues, K. Gummadi, and S. Saroiu. Policy-sealed data: A new abstraction for building trusted cloud services. In USENIX Security Symposium, 2012."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2011.5935247"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-87403-4_3"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/1755913.1755935"},{"key":"e_1_3_2_1_35_1","unstructured":"TCPDump and libpcap. http:\/\/www.tcpdump.org.  TCPDump and libpcap. http:\/\/www.tcpdump.org."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382228"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2168836.2168849"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043576"}],"event":{"name":"SOCC '14: ACM Symposium on Cloud Computing","sponsor":["SIGMOD ACM Special Interest Group on Management of Data","SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Seattle WA USA","acronym":"SOCC '14"},"container-title":["Proceedings of the ACM Symposium on Cloud Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2670979.2670989","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2670979.2670989","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:12:18Z","timestamp":1750227138000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2670979.2670989"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,11,3]]},"references-count":38,"alternative-id":["10.1145\/2670979.2670989","10.1145\/2670979"],"URL":"https:\/\/doi.org\/10.1145\/2670979.2670989","relation":{},"subject":[],"published":{"date-parts":[[2014,11,3]]},"assertion":[{"value":"2014-11-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}