Replica placement to mitigate attacks on clouds

Detalhes bibliográficos
Autor(a) principal: Araújo, Filipe
Data de Publicação: 2014
Outros Autores: Boychenko, Serhiy, Barbosa, Raul, Casimiro, António
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Texto Completo: https://hdl.handle.net/10316/102685
https://doi.org/10.1186/s13174-014-0007-z
Resumo: Execution of critical services traditionally requires multiple distinct replicas, supported by independent networks and hardware. To operate properly, these services often depend on the correctness of a fraction of replicas, usually over 2/3 or 1/2. Defying the ideal situation, economical reasons may tempt users to replicate critical services onto a single multi-tenant cloud infrastructure. Since this may expose users to correlated failures, we assess the risks for two kinds of majorities: a conventional one, related to the number of replicas, regardless of the machines where they run; and a second one, related to the physical machines where the replicas run. This latter case may exist in multi-tenant virtualized environments only. To assess these risks, under crash and Byzantine failures of virtual and physical machines, we resort to theoretical and experimental evaluation. Contrary to what one might expect, we conclude that it is not always favorable to distribute replicas evenly over a fixed number of physical machines. On the contrary, we found cases where they should be as unbalanced as possible. We systematically identify the best defense for each kind of failure and majority to preserve. We then review the most common real-life attacks on clouds and discuss the a priori placement of service replicas that minimizes the effects of these attacks.
id RCAP_a23dfda3c8bea92c575d36b828a8906a
oai_identifier_str oai:estudogeral.uc.pt:10316/102685
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Replica placement to mitigate attacks on cloudsCloud computingFault-ToleranceDependabilityVirtualizationExecution of critical services traditionally requires multiple distinct replicas, supported by independent networks and hardware. To operate properly, these services often depend on the correctness of a fraction of replicas, usually over 2/3 or 1/2. Defying the ideal situation, economical reasons may tempt users to replicate critical services onto a single multi-tenant cloud infrastructure. Since this may expose users to correlated failures, we assess the risks for two kinds of majorities: a conventional one, related to the number of replicas, regardless of the machines where they run; and a second one, related to the physical machines where the replicas run. This latter case may exist in multi-tenant virtualized environments only. To assess these risks, under crash and Byzantine failures of virtual and physical machines, we resort to theoretical and experimental evaluation. Contrary to what one might expect, we conclude that it is not always favorable to distribute replicas evenly over a fixed number of physical machines. On the contrary, we found cases where they should be as unbalanced as possible. We systematically identify the best defense for each kind of failure and majority to preserve. We then review the most common real-life attacks on clouds and discuss the a priori placement of service replicas that minimizes the effects of these attacks.FCT/COMPETE/FEDER - project DECAF, An Exploratory Study of Distributed Cloud Application Failures. FCT/COMPETE/FEDER - project CMU-PT/RNQ/0015/2009, TRONE, Trustworthy and Resilient Operations in a Network Environment.2014info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articlehttps://hdl.handle.net/10316/102685https://hdl.handle.net/10316/102685https://doi.org/10.1186/s13174-014-0007-zeng1867-48281869-0238Araújo, FilipeBoychenko, SerhiyBarbosa, RaulCasimiro, Antónioinfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2024-10-17T10:35:48Zoai:estudogeral.uc.pt:10316/102685Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-29T05:52:16.852967Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Replica placement to mitigate attacks on clouds
title Replica placement to mitigate attacks on clouds
spellingShingle Replica placement to mitigate attacks on clouds
Araújo, Filipe
Cloud computing
Fault-Tolerance
Dependability
Virtualization
title_short Replica placement to mitigate attacks on clouds
title_full Replica placement to mitigate attacks on clouds
title_fullStr Replica placement to mitigate attacks on clouds
title_full_unstemmed Replica placement to mitigate attacks on clouds
title_sort Replica placement to mitigate attacks on clouds
author Araújo, Filipe
author_facet Araújo, Filipe
Boychenko, Serhiy
Barbosa, Raul
Casimiro, António
author_role author
author2 Boychenko, Serhiy
Barbosa, Raul
Casimiro, António
author2_role author
author
author
dc.contributor.author.fl_str_mv Araújo, Filipe
Boychenko, Serhiy
Barbosa, Raul
Casimiro, António
dc.subject.por.fl_str_mv Cloud computing
Fault-Tolerance
Dependability
Virtualization
topic Cloud computing
Fault-Tolerance
Dependability
Virtualization
description Execution of critical services traditionally requires multiple distinct replicas, supported by independent networks and hardware. To operate properly, these services often depend on the correctness of a fraction of replicas, usually over 2/3 or 1/2. Defying the ideal situation, economical reasons may tempt users to replicate critical services onto a single multi-tenant cloud infrastructure. Since this may expose users to correlated failures, we assess the risks for two kinds of majorities: a conventional one, related to the number of replicas, regardless of the machines where they run; and a second one, related to the physical machines where the replicas run. This latter case may exist in multi-tenant virtualized environments only. To assess these risks, under crash and Byzantine failures of virtual and physical machines, we resort to theoretical and experimental evaluation. Contrary to what one might expect, we conclude that it is not always favorable to distribute replicas evenly over a fixed number of physical machines. On the contrary, we found cases where they should be as unbalanced as possible. We systematically identify the best defense for each kind of failure and majority to preserve. We then review the most common real-life attacks on clouds and discuss the a priori placement of service replicas that minimizes the effects of these attacks.
publishDate 2014
dc.date.none.fl_str_mv 2014
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://hdl.handle.net/10316/102685
https://hdl.handle.net/10316/102685
https://doi.org/10.1186/s13174-014-0007-z
url https://hdl.handle.net/10316/102685
https://doi.org/10.1186/s13174-014-0007-z
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 1867-4828
1869-0238
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833602501197168640

Registros relacionados