Risk-aware virtual resource management for access controlled cloud data centers

Abdulrahaman A Almutairi, Purdue University

Abstract

For economic benefits and efficient management of resources, organizations are increasingly moving towards the paradigm of “cloud computing” through which they are allowed on-demand delivery of hardware, software and data as services. Multi- tenancy and virtualization features of cloud computing enhance resource utilization and lower the cloud provider total cost of hosting customers data centric services. However, cloud vulnerabilities associated with its software and services pose many security challenges which are particularly exacerbated by multi-tenancy that allows sharing of resources among potentially untrusted tenants in access controlled cloud datacenters. Such vulnerabilities can result in an increased risk of data and information leakage. To mitigate this risk, we propose eefficient risk-aware virtual resource assignment mechanisms for cloud multi-tenant environment. In particular, we introduce the notion of sensitivity in datacenters with the objective to minimize the risk of leakage of data and its associated knowledge. Generally, the risk should not exceed in high sensitivity datacenters in comparison to low sensitivity datacenters. We present various assignment heuristics and compare their relative performance. In addition we present a distributed access control architecture that provides secure interoperation within a multi-cloud environment.

Degree

Ph.D.

Advisors

Ghafoor, Purdue University.

Subject Area

Computer Engineering

Off-Campus Purdue Users:
To access this dissertation, please log in to our
proxy server
.

Share

COinS