Nowadays, it is a matter of fact that Cloud is a "must" for all complex services requiring great amount of resources. Big-Data Services are a striking example: they actually perform many kind of analysis (like analytics) on very big repositories. Many File Systems and middleware exist for efficient distribution and management of data and they usually use Cloud Resources. Anyway Several problems arose about Security of data: Virtualization is the base of Cloud resources and, even if we consider data storage as virtually separated elements, security issues exist if privilege escalation allows for gaining control on any data on physical hosts. In this paper we show how it is possible to cope Model Driven Engineering techniques to security analysis and monitoring of Cloud infrastructures. For reducing overhead, we provide a formal profile of hosts thermal behaviors. Depending on services input workloads, we detect and forecast malicious actions by comparisons with real thermal data.
Improving security in cloud by formal modeling of IaaS resources / Amato, Flora; Moscato, Francesco; Moscato, Vincenzo; Colace, Francesco. - In: FUTURE GENERATION COMPUTER SYSTEMS. - ISSN 0167-739X. - 87:(2018), pp. 754-764. [10.1016/j.future.2017.08.016]
Improving security in cloud by formal modeling of IaaS resources
Flora Amato;Vincenzo Moscato;
2018
Abstract
Nowadays, it is a matter of fact that Cloud is a "must" for all complex services requiring great amount of resources. Big-Data Services are a striking example: they actually perform many kind of analysis (like analytics) on very big repositories. Many File Systems and middleware exist for efficient distribution and management of data and they usually use Cloud Resources. Anyway Several problems arose about Security of data: Virtualization is the base of Cloud resources and, even if we consider data storage as virtually separated elements, security issues exist if privilege escalation allows for gaining control on any data on physical hosts. In this paper we show how it is possible to cope Model Driven Engineering techniques to security analysis and monitoring of Cloud infrastructures. For reducing overhead, we provide a formal profile of hosts thermal behaviors. Depending on services input workloads, we detect and forecast malicious actions by comparisons with real thermal data.File | Dimensione | Formato | |
---|---|---|---|
1-s2.0-S0167739X17305964-main.pdf
solo utenti autorizzati
Licenza:
Accesso privato/ristretto
Dimensione
3.37 MB
Formato
Adobe PDF
|
3.37 MB | Adobe PDF | Visualizza/Apri Richiedi una copia |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.