Moving Target Defense Through Dynamic Virtual Machine Placement in Clouds

Abstract

Cloud computing, while becoming more and more popular as a dominant computing platform, introduces new securitychallenges. When virtual machines are deployed in a cloud environment, virtual machine placement strategies can significantlyaffect the overall security risks of the entire cloud. In recent years, the attacks are specifically designed to co-locate with target virtual machines in the cloud. The virtual machineplacement without considering the security risks may put the users, or even the entire cloud, in danger. In this paper, we present a comprehensive approach to quantify the security risk of cloud environments from network, host and VM. Accordingly, we propose a Security-aware Multi-Objective Optimization based virtual machine Placement scheme (SMOOP) to seek a Pareto-optimal solution that reduces the overall security risks of a cloud, while considering workload balance, resource utilization on CPU, memory, disk, and network traffic. Newplacement strategies are designed.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Aug 13, 2018
Accession Number
AD1070974

Entities

People

  • Songqing Chen

Organizations

  • George Mason University

Tags

DTIC Thesaurus Topics

  • Algorithms
  • Cloud Computing
  • Communication Networks
  • Computational Science
  • Computer Network Security
  • Computers
  • Consumers
  • Cybersecurity
  • Distributed Computing
  • Information Operations
  • Moving Target Defense
  • Moving Targets
  • Networks
  • Probability
  • Social Media
  • Students
  • Virtual Machines

Fields of Study

  • Computer science

Readers

  • Agent-Based Social Robotics and Mobile-Assisted Learning in Virtual Environments.
  • Cybersecurity.
  • Parallel and Distributed Computing.