TGVisor: A Tiny Hypervisor-Based Trusted Geolocation Framework for Mobile Cloud Clients

In cloud computing, geographic location of data is one of major security concerns of cloud users. To resolve this problem, most of previous work has been done on trusted relocation service in cloud service providers. For example, users are allowed to determine the physical location of their cloud servers and ensured about their requirements of relocation-based restrictions. However, it is also essential to handle trusted relocation service at cloud users' devices in mobile cloud computing. As mobile cloud tenants use cloud services everywhere, trusted relocation of cloud users arises a new security issue. Thus, in this paper, we present a novel trusted relocation system named Devisor for cloud user devices. The key mechanism of Devisor is providing a trusted channel between the relocation server and the GPS module in each mobile client device. We leverage Trusted Platform Module (TPM) and tiny hyper visor in order to securely perform the attestation of the relocation of client devices. To prove the practicality of Devisor, we design and implement a cloud word processor with trusted relocation service based on Ether pad. We also evaluate the performance of Devisor in cloud devices and show that it causes only 8.3% overhead in JavaScript benchmark, which indicates the feasibility of TGVisor.