Cloud Computing Applications in Tunnel Servers

Loading...
Thumbnail Image
Journal Title
Journal ISSN
Volume Title
Perustieteiden korkeakoulu | Master's thesis
Date
2023-03-20
Department
Major/Subject
Security and Cloud Computing
Mcode
SCI3084
Degree programme
Master’s Programme in Computer, Communication and Information Sciences
Language
en
Pages
63+10
Series
Abstract
The protection of online data has been ever increasing point of interest for many in recent times. This led to increasing popularity in public VPN and proxy server providers who promise hassle-free privacy for their users. However, in many cases, there is no guarantee that the service used is actually secure and that the browsing data that passes through the servers is protected and not shared with any third parties. The topic of this thesis comes from the idea of finding a way to introduce a technical solution that would allow users to verify the trustworthiness of the service rather than just trusting the service provider. Confidential Computing technologies seem like a viable solution for such purpose therefore, it was decided to implement a proxy server that could run in a secure enclave that could ensure the protection of user data in a way that not even the host of the server would not be able to see the data inside the enclave. The solution was implemented with Go programming language and using EGo framework that allows compiling an application for a secure enclave and regular environment thus giving providing an opportunity to test the bottlenecks introduced by a secure enclave environment compared to a regular environment. The implemented proxy is functional, though it does introduce a significant reduction in bandwidth, which mostly stems from the limitations in the current EGo framework implementation. This means that with further improvements running a proxy server in a secure enclave could become a viable solution.
Description
Supervisor
Aura, Tuomas
Thesis advisor
Arkko, Jari
Keywords
confidential computing, secure enclaves, tunneling, SOCKS5, Intel SGX, EGo
Other note
Citation