NODEGUARD: A Virtualized Introspection Security Approach for the Modern Cloud Data CenterShow others and affiliations
2022 (English)In: 2022 22ND IEEE/ACM INTERNATIONAL SYMPOSIUM ON CLUSTER, CLOUD AND INTERNET COMPUTING (CCGRID 2022) / [ed] Fazio, M Panda, DK Prodan, R Cardellini, V Kantarci, B Rana, O Villari, M, IEEE COMPUTER SOC , 2022, p. 790-797Conference paper, Published paper (Refereed)
Abstract [en]
This paper presents NODEGUARD, a security approach for detecting and isolating misbehaving Virtual Machines (VMs) in multi-tenant virtualized cloud data centers, based on the Virtual Machine Introspection (VMI) monitoring primitives. NODEGUARD employs a divide-and-conquer strategy that checks logical groups of VMs to ensure the efficiency of the detection mechanisms which opportunistically approaches a complexity of O (log(2)(n)) when there is a relatively low number of hostile VMs. This greatly enhances the algorithmic time complexity of the proposed security system compared to the O(n) complexity achieved by the traditional VMI inspection strategy that checks each VM separately. The approach has been evaluated in a virtualized cloud environment using the Mininet network emulator.
Place, publisher, year, edition, pages
IEEE COMPUTER SOC , 2022. p. 790-797
Keywords [en]
Cloud computing, Security, Virtual machine introspection, VMI, Intrusion detection, Time complexity
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:mdh:diva-60079DOI: 10.1109/CCGrid54584.2022.00093ISI: 000855065800083Scopus ID: 2-s2.0-85135766677ISBN: 978-1-6654-9956-9 (print)OAI: oai:DiVA.org:mdh-60079DiVA, id: diva2:1701174
Conference
22nd IEEE/ACM International Symposium on Cluster, Cloud and Internet Computing (CCGrid), MAY 16-19, 2022, Messina, ITALY
2022-10-052022-10-052023-06-26Bibliographically approved