Cited By
View all- Harel YGal IElovici Y(2017)Cyber Security and the Role of Intelligent Systems in Addressing its ChallengesACM Transactions on Intelligent Systems and Technology (TIST)10.1145/30577298:4(1-12)Online publication date: 11-May-2017
A Security Enforcement Framework for Virtual Machine Migration Auction
Pages 47 - 53
Abstract
Virtual machine migration auction (VMMA) is a bidding process to select potential target cloud service providers (CSPs) for migration. It is realized as a single application running on top of the hypervisor, where the overall communication between the CSPs is done through the Internet, an insecure channel. Therefore, ensuring security along with performance satisfaction of the VMMA system is an important but challenging problem. This requires identification of various threats and development of security and systematic protection mechanism.
In this paper, we present a security enforcement framework for VMMA system. The core element of our proposed framework identifies various potential threats and security constraints by investigating different interactions between participants in VMMA system. Then our framework extracts a set of formal security requirements based on the identified threats which enforces the security by using elliptic curve cryptography and bilinear pairing. Our approach will facilitate in designing and implementing strong security defense-in-depth against various threats to VMMA system in cloud computing platform.
References
[1]
S. K. Majhi and P. Bera. VM Migration Auction: Business Oriented Federation of Cloud Providers for Scaling of Application Services. IEEE PDGC, July, 2014.
[2]
D. Doler, A.C. Yao. On the Security of Public Key Protocol. In the proceedings of the IEEE 22nd Annual Symposium on Foundation of Computer Science, pp. 350--357, 1982.
[3]
M. Olney, P. Mullen, K. Miklavicic, and D. Kaminky. 2008 DNS Vulunerability. Sourcefire Vulunerability Research Team Report, July 2008.
[4]
CCEB- Common Criteria Editorial Board. Common criteria for Information Technology Security Evaluation Report. 1998.
[5]
S. L. Paulo, M. Barreto, Hae Y. Kim, Ben Lynn, Michael Scott. Efficient Algorithms for Pairing-Based Cryptosystems. Lecture Notes in Computer Science, Vol. 2442, pp.354--369, 2002.
[6]
S. D. Galbraith, K. Harsison, and D. Soldera. Implementating the tate pairing. Springer-Verlag,ANTS 2002, pp. 324--337, 2002.
[7]
A. Jurisic, and A. J. Menezes. Elliptic curves and cryptography Dr. Dobb's Journal, pp. 26--32, 1997.
[8]
N. Koblitz, A. J. Menezes, and S. Vanstone. The state of elliptic curve cryptography. Design, Codes and Cryptography, Vol. 19 pp. 173--193, 2000.
[9]
T. Kobayashi, K. Aoki, and H. Imai Efficient algorithms for Tate pairing. IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences,Vol. E89-A, No. 1,pp. 134--143, 2006
[10]
N. P. Smart. Identity-based authenticated key agreement protocol based on Weil pairing. Electronic Letters, pp. 532--630, 2002.
[11]
D. Meffert. Bilinear Pairings in Cryptography. Masters Thesis, Radboud Universiteit Nijmegen, 2009.
Index Terms
- A Security Enforcement Framework for Virtual Machine Migration Auction
Recommendations
Threat Modelling of Virtual Machine Migration Auction
The auction process in Virtual Machine migration is a new concept to enhance the availability of the cloud resources by the business federation of Cloud Service Providers. In this process, the complete communication is performed over the Internet, which ...
Traffic-sensitive live migration of virtual machines
CCGRID '15: Proceedings of the 15th IEEE/ACM International Symposium on Cluster, Cloud, and Grid ComputingIn this paper we address the problem of network contention between the migration traffic and the Virtual Machine (VM) application traffic for the live migration of co-located Virtual Machines. When VMs are migrated with pre-copy, they run at the source ...
Security-Preserving Live Migration of Virtual Machines in the Cloud
Hypervisor-based process protection is a novel approach that provides isolated execution environments for applications running on untrusted commodity operating systems. It is based on off-the-shelf hardware and trusted hypervisors while it meets the ...
Comments
Information & Contributors
Information
Published In
October 2015
112 pages
ISBN:9781450338219
DOI:10.1145/2809826
- Program Chairs:
- Ehab Al-Shaer,
- Christopher Oehmen,
- Mohammad Ashiqur Rahman
Copyright © 2015 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 12 October 2015
Check for updates
Author Tags
Qualifiers
- Research-article
Conference
CCS'15
Sponsor:
CCS'15: The 22nd ACM Conference on Computer and Communications Security
October 12, 2015
Colorado, Denver, USA
Acceptance Rates
SafeConfig '15 Paper Acceptance Rate 8 of 27 submissions, 30%;
Overall Acceptance Rate 22 of 61 submissions, 36%
Upcoming Conference
CCS '25
- Sponsor:
- sigsac
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 147Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)0
Reflects downloads up to 25 Feb 2025
Other Metrics
Citations
Cited By
View all- Harel YGal IElovici Y(2017)Cyber Security and the Role of Intelligent Systems in Addressing its ChallengesACM Transactions on Intelligent Systems and Technology (TIST)10.1145/30577298:4(1-12)Online publication date: 11-May-2017
View Options
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in