Multi-Objective Response to Co-Resident Attacks in Cloud Environment
Cloud computing is a dynamic environment that offers variety of on-demand services with low cost. However, customers face new security risks due to shared infrastructure in the cloud. Co-residency of virtual machines on the same physical machine, leads to several threats for cloud tenants. Cloud adm...
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Iran Telecom Research Center
2017-09-01
|
Series: | International Journal of Information and Communication Technology Research |
Subjects: | |
Online Access: | http://ijict.itrc.ac.ir/article-1-31-en.html |
_version_ | 1811169227287035904 |
---|---|
author | Farzaneh Abazari Morteza Analoui Hassan Takabi |
author_facet | Farzaneh Abazari Morteza Analoui Hassan Takabi |
author_sort | Farzaneh Abazari |
collection | DOAJ |
description | Cloud computing is a dynamic environment that offers variety of on-demand services with low cost. However, customers face new security risks due to shared infrastructure in the cloud. Co-residency of virtual machines on the same physical machine, leads to several threats for cloud tenants. Cloud administrators are often encountered with a more challenging problem since they have to work within a fixed budget for cloud hardening. The problem is how to select a subset of countermeasures to be within the budget and yet minimize the residual damage to the cloud caused by malicious VMs. We address this problem by introducing a novel multi-objective attack response system. We consider response cost, co-residency threat, and virtual machines interactions to select optimal response in face of the attack. Optimal response selection as a multi-objective optimization problem calculates alternative responses, with minimum threat and cost. Our method estimates threat level based on the collaboration graph and suggests proper countermeasures based on threat type with minimum cost. Experimental result shows that our system can suggest optimal responses based on the current state of the cloud. |
first_indexed | 2024-04-10T16:40:01Z |
format | Article |
id | doaj.art-6ebb2e0c49914335ac934c8203218993 |
institution | Directory Open Access Journal |
issn | 2251-6107 2783-4425 |
language | English |
last_indexed | 2024-04-10T16:40:01Z |
publishDate | 2017-09-01 |
publisher | Iran Telecom Research Center |
record_format | Article |
series | International Journal of Information and Communication Technology Research |
spelling | doaj.art-6ebb2e0c49914335ac934c82032189932023-02-08T07:56:19ZengIran Telecom Research CenterInternational Journal of Information and Communication Technology Research2251-61072783-44252017-09-01932536Multi-Objective Response to Co-Resident Attacks in Cloud EnvironmentFarzaneh Abazari0Morteza Analoui1Hassan Takabi2 Cloud computing is a dynamic environment that offers variety of on-demand services with low cost. However, customers face new security risks due to shared infrastructure in the cloud. Co-residency of virtual machines on the same physical machine, leads to several threats for cloud tenants. Cloud administrators are often encountered with a more challenging problem since they have to work within a fixed budget for cloud hardening. The problem is how to select a subset of countermeasures to be within the budget and yet minimize the residual damage to the cloud caused by malicious VMs. We address this problem by introducing a novel multi-objective attack response system. We consider response cost, co-residency threat, and virtual machines interactions to select optimal response in face of the attack. Optimal response selection as a multi-objective optimization problem calculates alternative responses, with minimum threat and cost. Our method estimates threat level based on the collaboration graph and suggests proper countermeasures based on threat type with minimum cost. Experimental result shows that our system can suggest optimal responses based on the current state of the cloud.http://ijict.itrc.ac.ir/article-1-31-en.htmlcloud computingattack responsecloud securityco-resident attackgraph theory |
spellingShingle | Farzaneh Abazari Morteza Analoui Hassan Takabi Multi-Objective Response to Co-Resident Attacks in Cloud Environment International Journal of Information and Communication Technology Research cloud computing attack response cloud security co-resident attack graph theory |
title | Multi-Objective Response to Co-Resident Attacks in Cloud Environment |
title_full | Multi-Objective Response to Co-Resident Attacks in Cloud Environment |
title_fullStr | Multi-Objective Response to Co-Resident Attacks in Cloud Environment |
title_full_unstemmed | Multi-Objective Response to Co-Resident Attacks in Cloud Environment |
title_short | Multi-Objective Response to Co-Resident Attacks in Cloud Environment |
title_sort | multi objective response to co resident attacks in cloud environment |
topic | cloud computing attack response cloud security co-resident attack graph theory |
url | http://ijict.itrc.ac.ir/article-1-31-en.html |
work_keys_str_mv | AT farzanehabazari multiobjectiveresponsetocoresidentattacksincloudenvironment AT mortezaanaloui multiobjectiveresponsetocoresidentattacksincloudenvironment AT hassantakabi multiobjectiveresponsetocoresidentattacksincloudenvironment |