On Trustworthiness of CPU Usage Metering and Accounting

2010 IEEE 30th International Conference on Distributed Computing Systems Workshops Pub Date : 2010-06-21 DOI:10.1109/ICDCSW.2010.40

Mei Liu, Xuhua Ding

{"title":"On Trustworthiness of CPU Usage Metering and Accounting","authors":"Mei Liu, Xuhua Ding","doi":"10.1109/ICDCSW.2010.40","DOIUrl":null,"url":null,"abstract":"In the envisaged utility computing paradigm, a user taps a service provider's computing resources to accomplish her tasks, without deploying the needed hardware and software in her own IT infrastructure. To make the service profitable, the service provider charges the user based on the resources consumed. A commonly billed resource is CPU usage. A key factor to ensure the success of such a business model is the trustworthiness of the resource metering scheme. In this paper, we provide a systematic study on the trustworthiness of CPU usage metering. Our results show that the metering schemes in commodity operating systems should not be used in utility computing. A dishonest server can run various attacks to cheat the users. Many of the attacks are surprisingly simple and do not even require high privileges or sophisticated techniques. To demonstrate that, we experiment with several types of attacks on Linux and show their adversarial effects. We also suggest that source integrity, execution integrity and fine-grained metering are the necessary properties for a trustworthy metering scheme in utility computing.","PeriodicalId":133907,"journal":{"name":"2010 IEEE 30th International Conference on Distributed Computing Systems Workshops","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-06-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 IEEE 30th International Conference on Distributed Computing Systems Workshops","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDCSW.2010.40","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 14

Abstract

In the envisaged utility computing paradigm, a user taps a service provider's computing resources to accomplish her tasks, without deploying the needed hardware and software in her own IT infrastructure. To make the service profitable, the service provider charges the user based on the resources consumed. A commonly billed resource is CPU usage. A key factor to ensure the success of such a business model is the trustworthiness of the resource metering scheme. In this paper, we provide a systematic study on the trustworthiness of CPU usage metering. Our results show that the metering schemes in commodity operating systems should not be used in utility computing. A dishonest server can run various attacks to cheat the users. Many of the attacks are surprisingly simple and do not even require high privileges or sophisticated techniques. To demonstrate that, we experiment with several types of attacks on Linux and show their adversarial effects. We also suggest that source integrity, execution integrity and fine-grained metering are the necessary properties for a trustworthy metering scheme in utility computing.

查看原文本刊更多论文

论CPU使用率计量核算的可信度

在设想的效用计算范例中，用户利用服务提供商的计算资源来完成任务，而无需在自己的IT基础设施中部署所需的硬件和软件。为了使服务有利可图，服务提供商根据所消耗的资源向用户收费。一个常见的收费资源是CPU使用率。确保这种商业模式成功的一个关键因素是资源计量方案的可信度。本文对CPU使用率计量的可信度进行了系统的研究。我们的研究结果表明，商品操作系统中的计量方案不应用于效用计算。不诚实的服务器可以运行各种攻击来欺骗用户。许多攻击出奇地简单，甚至不需要很高的权限或复杂的技术。为了证明这一点，我们在Linux上进行了几种类型的攻击实验，并展示了它们的对抗效果。我们还建议源完整性、执行完整性和细粒度计量是效用计算中可信计量方案的必要属性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 IEEE 30th International Conference on Distributed Computing Systems Workshops

自引率

0.00%

发文量