Quantic: Distance metrics for evaluating multi-tenancy threats in public cloud

Taous Madi, Mengyuan Zhang, Yosr Jarraya, Amir Alimohammadifar, Makan Pourzandi, Lingyu Wang, Mourad Debbabi

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review

Abstract

As a cornerstone of cloud computing, multi-Tenancy brings not only the benefit of resource sharing but also additional security implications. To achieve an optimal trade-off between security and resource sharing, cloud providers are obliged to evaluate the potential threats related to multi-Tenancy. However, quantitative approaches for evaluating those threats are largely missing in existing works. In this paper, we propose a set of multi-level distance metrics that quantify the proximity of tenants' virtual resources inside a cloud. Those metrics are defined based on the configuration and deployment in a cloud, such that a cloud provider may apply them to evaluate the risk related to potential multi-Tenancy attacks. We conduct case studies and experiments on both real and fictitious clouds. The obtained results show the effectiveness and applicability of our metrics. We further implement our metrics in OpenStack and show how they can be applied for distance auditing.
Original languageEnglish
Title of host publicationProceedings - IEEE 10th International Conference on Cloud Computing Technology and Science, CloudCom 2018
PublisherIEEE Computer Society
Pages163-170
ISBN (Electronic)9781538678992
DOIs
Publication statusPublished - 26 Dec 2018
Externally publishedYes
Event10th International Conference on Cloud Computing Technology and Science, CloudCom 2018 - Nicosia, Cyprus
Duration: 10 Dec 201813 Dec 2018

Publication series

NameProceedings of the International Conference on Cloud Computing Technology and Science, CloudCom
ISSN (Print)2330-2194
ISSN (Electronic)2330-2186

Conference

Conference10th International Conference on Cloud Computing Technology and Science, CloudCom 2018
Country/TerritoryCyprus
CityNicosia
Period10/12/1813/12/18

Funding

We thank the anonymous reviewers for their insightful comments. This work is partially supported by the Natural Sciences and Engineering Research Council of Canada and Ericsson Canada under CRD Grant N01823 and by PROMPT Quebec.

FundersFunder number
CRDN01823
Ericsson Canada
Natural Sciences and Engineering Research Council of Canada

    Fingerprint

    Dive into the research topics of 'Quantic: Distance metrics for evaluating multi-tenancy threats in public cloud'. Together they form a unique fingerprint.

    Cite this