VPC Introduction
[1] VPC is a logically isolated networking environment that a separate private IP space and routing configuration.
Characteristics
- After creating a VPC, a customer can launch instances into VPC, instead of the large EC2 network pool.
- The customer can also divide a VPC into multiple subnets, where each subnet can have a preferred availability zone to place instances.
- The private IP address of an instance in VPC is only known to its owner. It cannot be detected by other users. Thus, it can significantly reduces the threat of co-residence.
Reference
[1] A Measurement Study on Co-residence Threat inside the Cloud, by Zhang Xu, Haining Wang and Zhenyu Wu, in UsenixSecurity2016
No comments:
Post a Comment