A cost-effective security management for clouds: A game-theoretic deception mechanism
Conference
Adili, MT, Mohammadi, A, Manshaei, MH et al. (2017). A cost-effective security management for clouds: A game-theoretic deception mechanism
. 98-106. 10.23919/INM.2017.7987269
Adili, MT, Mohammadi, A, Manshaei, MH et al. (2017). A cost-effective security management for clouds: A game-theoretic deception mechanism
. 98-106. 10.23919/INM.2017.7987269
The Information Technology (IT) is observing a rising shift toward cloud computing due to its attractive on-demand storage and computing capabilities that allow moving the computing and storage load from the owner's side to the service provider's place and enjoying the data or computed results efficiently anywhere anytime. This growing use of clouds also introduces significant security concerns, as sensitive data and critical applications are increasingly being moved to clouds. Recent work also reveals different security threats, e.g., side-channel attacks, against cloud services. In this work, we address the need of improved solutions for the security management of cloud computing. We propose a moving target-based deceptive defense mechanism where the moving target idea is centered on frequent migrations of the virtual machines (VMs). We make the moves cost-efficient by modeling the problem as a signaling game between the adversary and the VMs and introducing deceptions. We solve the game and obtain two Nash equilibria. These results illustrate the best possible moves by the adversary and the corresponding strategy for the VMs that should reduce the adversary's chance of being successful at most.
