A secure VM allocation scheme to preserve against co-resident threat

Int. J. Web Eng. Technol. Pub Date : 2020-06-03 DOI:10.1504/ijwet.2020.107686

S. Chhabra, Ashutosh Kumar Singh

{"title":"A secure VM allocation scheme to preserve against co-resident threat","authors":"S. Chhabra, Ashutosh Kumar Singh","doi":"10.1504/ijwet.2020.107686","DOIUrl":null,"url":null,"abstract":"Preserving the secrecy in cloud system is one of the biggest concerns for the cloud customers who faces security risks in the context of load balancing. The co-resident attacks are widely used by attackers, where malicious users build side channels and extract private information from VMs. The proposed model evaluates the possibility of VM co-residency and success rate of an attack. The emphasis of this paper is to reduce the possibility of co-resident attacks among different users. When cloud data centres receive requests for the tasks deployment, then the proposed system will find out the secure physical machine under VM allocation policies while avoiding the threats. The performance is calculated by these metrics: makespan, resource utilisation, co-residency probability and co-resident success rate. The results show that the most virtual machine allocation policy (MVMP) effectively reduces the risk under the safe states. The framework significantly improves the security by reducing the shared servers up to 32.2% and enhances the resource utilisation up to 44.14% over least VM allocation policy (LVMP), round robin VM allocation policy (RRVMP) allocation schemes.","PeriodicalId":396746,"journal":{"name":"Int. J. Web Eng. Technol.","volume":"12 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-06-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Int. J. Web Eng. Technol.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/ijwet.2020.107686","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 12

Abstract

Preserving the secrecy in cloud system is one of the biggest concerns for the cloud customers who faces security risks in the context of load balancing. The co-resident attacks are widely used by attackers, where malicious users build side channels and extract private information from VMs. The proposed model evaluates the possibility of VM co-residency and success rate of an attack. The emphasis of this paper is to reduce the possibility of co-resident attacks among different users. When cloud data centres receive requests for the tasks deployment, then the proposed system will find out the secure physical machine under VM allocation policies while avoiding the threats. The performance is calculated by these metrics: makespan, resource utilisation, co-residency probability and co-resident success rate. The results show that the most virtual machine allocation policy (MVMP) effectively reduces the risk under the safe states. The framework significantly improves the security by reducing the shared servers up to 32.2% and enhances the resource utilisation up to 44.14% over least VM allocation policy (LVMP), round robin VM allocation policy (RRVMP) allocation schemes.

查看原文本刊更多论文

一种防止共同驻留威胁的安全虚拟机分配方案

保持云系统的保密性是云客户在负载平衡环境中面临安全风险的最大问题之一。共同驻留攻击被攻击者广泛使用，恶意用户通过建立侧通道从虚拟机中提取私有信息。该模型评估了虚拟机共驻留的可能性和攻击成功率。本文的重点是减少不同用户之间共同驻留攻击的可能性。当云数据中心收到任务部署请求时，该系统将在虚拟机分配策略下找到安全的物理机，同时避免威胁。性能由以下指标计算:makespan、资源利用率、共同驻留概率和共同驻留成功率。结果表明，在安全状态下，最优虚拟机分配策略(MVMP)能有效降低风险。与LVMP (least VM allocation policy)和RRVMP (round robin VM allocation policy)分配方案相比，该框架将共享服务器减少32.2%，显著提高了安全性，并将资源利用率提高了44.14%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Int. J. Web Eng. Technol.

自引率

0.00%

发文量