Multi-level VM replication based survivability for mission-critical cloud computing

Ming Zhao, Francois D'Ugard, Kevin A. Kwiat, Charles A. Kamhoua

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Scopus citations

Abstract

The elasticity and economics of cloud computing offer significant benefits to mission-critical applications which are increasingly complex and resource demanding. Cloud systems also provide powerful tools such as virtual machine (VM) based replication for defending mission-critical applications. However, cloud-based mission-critical computing raises serious challenges to mission assurance. VM-based consolidation brings different applications to the same set of physical resources, increasing the risk of one user compromising the mission of another. The mission-critical application in a VM lacks the visibility and control to detect and stop outside malicious attacks, whereas the support for security isolation from existing cloud systems is also limited. The objective of the research presented in this paper is to address these challenges and improve the survivability of mission-critical applications through the novel use of VM replication. Specifically, this paper presents a new multi-level VM replication approach which uses different types of VM clones to provide a variety of protections to mission-critical applications, and improve the survivability of the applications under accidental faults and malicious attacks. In this approach, full VM clones are employed to provide tolerance of attacks, decoy clones are created to divert attacks, and honeypot clones are used to analyze attacks. The paper also presents the prototypes of the proposed approach implemented for the widely used OpenStack-based private cloud systems and Amazon-EC2-based public cloud systems.

Original languageEnglish (US)
Title of host publicationProceedings of the 2015 IFIP/IEEE International Symposium on Integrated Network Management, IM 2015
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages1351-1356
Number of pages6
ISBN (Print)9783901882760
DOIs
StatePublished - Jun 29 2015
Externally publishedYes
Event14th IFIP/IEEE International Symposium on Integrated Network Management, IM 2015 - Ottawa, Canada
Duration: May 11 2015May 15 2015

Other

Other14th IFIP/IEEE International Symposium on Integrated Network Management, IM 2015
CountryCanada
CityOttawa
Period5/11/155/15/15

ASJC Scopus subject areas

  • Software
  • Computer Science Applications
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Multi-level VM replication based survivability for mission-critical cloud computing'. Together they form a unique fingerprint.

  • Cite this

    Zhao, M., D'Ugard, F., Kwiat, K. A., & Kamhoua, C. A. (2015). Multi-level VM replication based survivability for mission-critical cloud computing. In Proceedings of the 2015 IFIP/IEEE International Symposium on Integrated Network Management, IM 2015 (pp. 1351-1356). [7140494] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/INM.2015.7140494