期刊
RELIABILITY ENGINEERING & SYSTEM SAFETY
卷 193, 期 -, 页码 -出版社
ELSEVIER SCI LTD
DOI: 10.1016/j.ress.2019.106666
关键词
Co-residence attack; N-version programming; First-past-the-post voting; Threshold; Minmax game
This paper models a software service component implementing the N-version programming (NVP) redundancy on the cloud computing platform to enhance the service reliability. Specifically, multiple versions of the same service component are activated in parallel on different servers of the cloud to perform the requested service. At required service response time, the output is determined based on a threshold first-past-the-post voting rule (output with the most votes and the number of these votes exceeds a predetermined threshold). However, effectiveness of the NVP approach can be greatly compromised by co-residence attacks, a common type of cyber-attacks launched to corrupt user's service through co-residing user's and attacker's virtual machines on the same cloud server. This paper formulates and solves an optimization problem, particularly, a minmax game problem that finds the number of service component versions (SCVs) and the threshold to maximize the user's utility while considering a strategic attack behavior aiming to maximize the attacker's utility. The solution methodology encompasses a probabilistic model of evaluating the service success probability (SSP) and corruption attack success probability (CAP), two performance metrics used in the computation of the user's and attacker's utilities. Examples are analyzed to demonstrate influences of different model parameters on SSP, CAP, and solutions to the considered optimization problem.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据