TY - GEN
T1 - Resource allocation for security services in mobile cloud computing
AU - Liang, Hongbin
AU - Huang, Dijiang
AU - Cai, Lin X.
AU - Shen, Xuemin
AU - Peng, Daiyuan
N1 - Copyright:
Copyright 2011 Elsevier B.V., All rights reserved.
PY - 2011
Y1 - 2011
N2 - Mobile cloud is a machine-to-machine service model, where a mobile device can use the cloud for searching, data mining, and multimedia processing. To protect the processed data, security services, i.e., encryption, decryption, authentications, etc., are performed in the cloud. In general, we can classify cloud security services in two categories: Critical Security (CS) service and Normal Security (NS) service. CS service provides strong security protection such as using longer key size, strict security access policies, isolations for protecting data, and so on. The CS service usually occupies more cloud computing resources, however it generates more rewards to the cloud provider since the CS service users need to pay more for using the CS service. With the increase of the number of CS and NS service users, it is important to allocate the cloud resource to maximize the system rewards with the considerations of the cloud resource consumption and incomes generated from cloud users. To address this issue, we propose a Security Service Admission Model (SSAM) based on Semi-Markov Decision Process to model the system reward for the cloud provider. We, first, define system states by a tuple represented by the numbers of cloud users and their associated security service categories, and current event type (i.e., arrival or departure).We then derive the system steady-state probability and service request blocking probability by using the proposed SSAM. Numerical results show that the obtained theoretic probabilities are consistent with our simulation results.
AB - Mobile cloud is a machine-to-machine service model, where a mobile device can use the cloud for searching, data mining, and multimedia processing. To protect the processed data, security services, i.e., encryption, decryption, authentications, etc., are performed in the cloud. In general, we can classify cloud security services in two categories: Critical Security (CS) service and Normal Security (NS) service. CS service provides strong security protection such as using longer key size, strict security access policies, isolations for protecting data, and so on. The CS service usually occupies more cloud computing resources, however it generates more rewards to the cloud provider since the CS service users need to pay more for using the CS service. With the increase of the number of CS and NS service users, it is important to allocate the cloud resource to maximize the system rewards with the considerations of the cloud resource consumption and incomes generated from cloud users. To address this issue, we propose a Security Service Admission Model (SSAM) based on Semi-Markov Decision Process to model the system reward for the cloud provider. We, first, define system states by a tuple represented by the numbers of cloud users and their associated security service categories, and current event type (i.e., arrival or departure).We then derive the system steady-state probability and service request blocking probability by using the proposed SSAM. Numerical results show that the obtained theoretic probabilities are consistent with our simulation results.
UR - http://www.scopus.com/inward/record.url?scp=79960606609&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=79960606609&partnerID=8YFLogxK
U2 - 10.1109/INFCOMW.2011.5928806
DO - 10.1109/INFCOMW.2011.5928806
M3 - Conference contribution
AN - SCOPUS:79960606609
SN - 9781457702488
T3 - 2011 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2011
SP - 191
EP - 195
BT - 2011 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2011
T2 - 2011 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2011
Y2 - 10 April 2011 through 15 April 2011
ER -