• 综合
  • 标题
  • 关键词
  • 摘要
  • 学者
  • 期刊-刊名
  • 期刊-ISSN
  • 会议名称
搜索

作者:

Zhan, Jing (Zhan, Jing.) | Fan, Xudong (Fan, Xudong.) | Han, Jin (Han, Jin.) | Gao, Yaqi (Gao, Yaqi.) | Xia, Xiaoqing (Xia, Xiaoqing.) | Zhang, Qian (Zhang, Qian.)

收录:

EI Scopus SCIE

摘要:

In cloud networks, edging network virtualization technology is widely adopted to protect tenants with isolated networks mainly from threats inside the cloud. However, since tenants completely rely on cloud service provider's service interface to be aware of their current network policy, malicious admin alone or with concluded tenants is/are fully capable of acquiring any target tenant network data by attacking corresponding policies stored and enforced on the edging end hosts without tenants knowing. Therefore, this paper presents cloud insider attack detector and locator (CIADL) on multi-tenant network isolation for OpenStack. We propose an insider attack threat model with attack category. A layered state model based constructing and attack detection methods are also proposed, enabling efficient policy confliction detection between expected policy on central node and enforcing policy on end hosts. Along with a threat locating method with fine granularity of device policy rules for recovery purpose. We implements the proof of concept system of CIADL, and the experiments and analysis show our method can cover all attack types defined in threat model with low overheads, and scales well with network and policy size and attack number increase. Compared to existing work model with VM-VM state, CIADL state model with NET-NET state gets about 8.5% and 92.3% improvement on construction and verification time costs with most hostile environment (AP = 80%) and largest policy scale (PS = 4000), which suggests CIADL is both efficient and scalable.

关键词:

Cloud computing Insider attack detection Multi-tenant network isolation

作者机构:

  • [ 1 ] [Zhan, Jing]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 2 ] [Fan, Xudong]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 3 ] [Han, Jin]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 4 ] [Gao, Yaqi]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 5 ] [Xia, Xiaoqing]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 6 ] [Zhang, Qian]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China
  • [ 7 ] [Zhan, Jing]Beijing Univ Technol, Beijing Key Lab Trusted Comp, Beijing 100124, Peoples R China
  • [ 8 ] [Han, Jin]Beijing Univ Technol, Beijing Key Lab Trusted Comp, Beijing 100124, Peoples R China
  • [ 9 ] [Gao, Yaqi]Beijing Univ Technol, Beijing Key Lab Trusted Comp, Beijing 100124, Peoples R China
  • [ 10 ] [Zhan, Jing]Beijing Univ Technol, Natl Engn Lab Crit Technol Informat Secur Classif, Beijing 100124, Peoples R China
  • [ 11 ] [Xia, Xiaoqing]Beijing Univ Technol, Natl Engn Lab Crit Technol Informat Secur Classif, Beijing 100124, Peoples R China
  • [ 12 ] [Zhang, Qian]Beijing Univ Technol, Natl Engn Lab Crit Technol Informat Secur Classif, Beijing 100124, Peoples R China

通讯作者信息:

  • [Zhan, Jing]Beijing Univ Technol, Coll Comp Sci, Fac Informat Technol, Beijing 100124, Peoples R China;;[Zhan, Jing]Beijing Univ Technol, Beijing Key Lab Trusted Comp, Beijing 100124, Peoples R China;;[Zhan, Jing]Beijing Univ Technol, Natl Engn Lab Crit Technol Informat Secur Classif, Beijing 100124, Peoples R China

查看成果更多字段

相关关键词:

相关文章:

来源 :

JOURNAL OF AMBIENT INTELLIGENCE AND HUMANIZED COMPUTING

ISSN: 1868-5137

年份: 2020

期: 9

卷: 11

页码: 3473-3495

ESI学科: COMPUTER SCIENCE;

ESI高被引阀值:34

JCR分区:1

被引次数:

WoS核心集被引频次: 5

SCOPUS被引频次: 5

ESI高被引论文在榜: 0 展开所有

万方被引频次:

中文被引频次:

近30日浏览量: 2

在线人数/总访问数:331/3672665
地址:北京工业大学图书馆(北京市朝阳区平乐园100号 邮编:100124) 联系我们:010-67392185
版权所有:北京工业大学图书馆 站点建设与维护:北京爱琴海乐之技术有限公司