Nowadays, it is a matter of fact that Cloud is a "must" for all complex services requiring great amount of resources. Big-Data Services are a striking example: they actually perform many kind of analysis (like analytics) on very big repositories. Many File Systems and middleware exist for efficient distribution and management of data and they usually use Cloud Resources. Anyway Several problems arose about Security of data: Virtualization is the base of Cloud resources and, even if we consider data storage as virtually separated elements, security issues exist if privilege escalation allows for gaining control on any data on physical hosts. In this paper we show how it is possible to cope Model Driven Engineering techniques to security analysis and monitoring of Cloud infrastructures. For reducing overhead, we provide a formal profile of hosts thermal behaviors. Depending on services input workloads, we detect and forecast malicious actions by comparisons with real thermal data.
Improving security in cloud by formal modeling of IaaS resources
Moscato, Francesco;Colace, Francesco
2018-01-01
Abstract
Nowadays, it is a matter of fact that Cloud is a "must" for all complex services requiring great amount of resources. Big-Data Services are a striking example: they actually perform many kind of analysis (like analytics) on very big repositories. Many File Systems and middleware exist for efficient distribution and management of data and they usually use Cloud Resources. Anyway Several problems arose about Security of data: Virtualization is the base of Cloud resources and, even if we consider data storage as virtually separated elements, security issues exist if privilege escalation allows for gaining control on any data on physical hosts. In this paper we show how it is possible to cope Model Driven Engineering techniques to security analysis and monitoring of Cloud infrastructures. For reducing overhead, we provide a formal profile of hosts thermal behaviors. Depending on services input workloads, we detect and forecast malicious actions by comparisons with real thermal data.| File | Dimensione | Formato | |
|---|---|---|---|
|
137 Colace Pre-Print.pdf
accesso aperto
Descrizione: 0167-739X/© 2017 Elsevier B.V. All rights reserved. Link editore: http://dx.doi.org/10.1016/j.future.2017.08.016
Tipologia:
Documento in Pre-print (manoscritto inviato all'editore, precedente alla peer review)
Licenza:
Creative commons
Dimensione
1.39 MB
Formato
Adobe PDF
|
1.39 MB | Adobe PDF | Visualizza/Apri |
|
Colace Francesco 2-137 DEFINITIVO.pdf
non disponibili
Tipologia:
Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza:
NON PUBBLICO - Accesso privato/ristretto
Dimensione
3.29 MB
Formato
Adobe PDF
|
3.29 MB | Adobe PDF | Visualizza/Apri Richiedi una copia |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
