Publication Type
Conference Proceeding Article
Version
acceptedVersion
Publication Date
12-2018
Abstract
Due to increasing number of avenues for conducting cross-virtual machine (VM) side-channel attacks, the security of public IaaS cloud data centers is a growing concern. These attacks allow an adversary to steal private information from a target user whose VM instance is co-located with that of the adversary. To reduce the probability of malicious co-location, we propose a novel VM placement algorithm called “Previously Co-Located Users First”. We perform a theoretical and empirical analysis of our proposed algorithm to evaluate its resource efficiency and security. Our results, obtained using real-world cloud traces containing millions of VM requests and thousands of actual users, indicate that the proposed algorithm provides a significant increase in the cloud's co-location resistance with little compromise in resource utilization, compared to existing approaches.
Keywords
cloud security, co-location attacks, data centers, virtual machine placement
Discipline
Data Storage Systems | Software Engineering
Research Areas
Software and Cyber-Physical Systems
Publication
2018 24th International Conference on Parallel and Distributed Systems(ICPADS: Singapore, December 11-13: Proceedings
First Page
61
Last Page
68
ISBN
9781538673089
Identifier
10.1109/PADSW.2018.8644849
Publisher
IEEE Computer Society
City or Country
Los Alamitos, CA
Citation
AGARWAL, Amit and TA, Nguyen Binh Duong.
Co-location resistant virtual machine placement in cloud data centers. (2018). 2018 24th International Conference on Parallel and Distributed Systems(ICPADS: Singapore, December 11-13: Proceedings. 61-68.
Available at: https://ink.library.smu.edu.sg/sis_research/4831
Copyright Owner and License
Authors
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
https://doi.org/10.1109/PADSW.2018.8644849