Sit Here: Placing Virtual Machines Securely in Cloud Environments

Mansour Aldawood, Arshad Jhumka, Suhaib Fahmy, Suhaib Fahmy

Abstract

A Cloud Computing Environment (CCE) leverages the advantages offered by virtualisation to enable virtual machines (VMs) within the same physical machine (PM) to share physical resources. Cloud service providers (CSPs) accommodate the fluctuating resource demands of cloud users dynamically, through elastic resource provisioning. CSPs use VM allocation techniques such as VM placement and VM migration to optimise the use of shared physical resources in the CCE. However, these techniques are exposed to potential security threats that can lead to the problem of malicious co-residency between VMs. This threat happens when a malicious VM is co-located with a critical (or target) VM on the same PM. Hence, the VM allocation techniques need to be made secure. While earlier works propose specific solutions to address this malicious co-residency problem, our work here proposes to investigate the allocation patterns that are more likely to lead to a secure allocation. Furthermore, we introduce a security-aware VM allocation algorithm (SRS) that aims to allocate the VMs securely, to reduce the potential for co-residency between malicious and target VMs. Our study shows: (i) our SRS algorithm outperforms all state-of-the-art allocation algorithms and (ii) algorithms that adopt stacking-based behaviours are more likely to return secure allocations than those with spreading or random behaviours.

Download


Paper Citation


in Harvard Style

Aldawood M., Jhumka A. and Fahmy S. (2021). Sit Here: Placing Virtual Machines Securely in Cloud Environments. In Proceedings of the 11th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-758-510-4, pages 248-259. DOI: 10.5220/0010459202480259


in Bibtex Style

@conference{closer21,
author={Mansour Aldawood and Arshad Jhumka and Suhaib Fahmy},
title={Sit Here: Placing Virtual Machines Securely in Cloud Environments},
booktitle={Proceedings of the 11th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2021},
pages={248-259},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010459202480259},
isbn={978-989-758-510-4},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 11th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Sit Here: Placing Virtual Machines Securely in Cloud Environments
SN - 978-989-758-510-4
AU - Aldawood M.
AU - Jhumka A.
AU - Fahmy S.
PY - 2021
SP - 248
EP - 259
DO - 10.5220/0010459202480259