Secure out-of-band Remote Management System in IaaS

Download this project as a .zip file Download this project as a tar.gz file


FBCrypt prevents information leakage via the management VM in out-of-band remote management. FBCrypt encrypts the inputs and outputs between a VNC client and a user VM using the virtual machine monitor (VMM). Sensitive information is protected against the management VM between them. The VMM intercepts the reads of virtual devices by a user VM and decrypts the inputs, whereas it intercepts the updates of a framebuffer by a user VM and encrypts the pixel data.

System Requirements

FBCrypt supports para-virtualized and fully-virtualized guest operating systems in Xen and FBCrypt is not necessary to modificate DomainU.


Dependable and Secure Remote Management in IaaS Clouds


Please send e-mail egawan_at_ksl.ci.kyutech.ac.jp


KSL -Kernels & Systems Lab-