Publication Type

Conference Proceeding Article

Version

acceptedVersion

Publication Date

12-2018

Abstract

Due to increasing number of avenues for conducting cross-virtual machine (VM) side-channel attacks, the security of public IaaS cloud data centers is a growing concern. These attacks allow an adversary to steal private information from a target user whose VM instance is co-located with that of the adversary. To reduce the probability of malicious co-location, we propose a novel VM placement algorithm called “Previously Co-Located Users First”. We perform a theoretical and empirical analysis of our proposed algorithm to evaluate its resource efficiency and security. Our results, obtained using real-world cloud traces containing millions of VM requests and thousands of actual users, indicate that the proposed algorithm provides a significant increase in the cloud's co-location resistance with little compromise in resource utilization, compared to existing approaches.

Keywords

cloud security, co-location attacks, data centers, virtual machine placement

Discipline

Data Storage Systems | Software Engineering

Research Areas

Software and Cyber-Physical Systems

Publication

2018 24th International Conference on Parallel and Distributed Systems(ICPADS: Singapore, December 11-13: Proceedings

First Page

61

Last Page

68

ISBN

9781538673089

Identifier

10.1109/PADSW.2018.8644849

Publisher

IEEE Computer Society

City or Country

Los Alamitos, CA

Copyright Owner and License

Authors

Additional URL

https://doi.org/10.1109/PADSW.2018.8644849

Share

COinS