Controlled access to cloud resources for mitigating Economic Denial of Sustainability (EDoS) attacks
详细信息 查看全文
- 作者:Zubair A. Baig ; a ; z.baig@ecu.edu.au" class="auth_mail" title="E-mail the corresponding author ; z.baig@ecu.edu.au" class="auth_mail" title="E-mail the corresponding authorAuthor Vitae ; Sadiq M. Saitb ; sadiq@kfupm.edu.sa" class="auth_mail" title="E-mail the corresponding authorAuthor Vitae ; Farid Binbeshrb ; g201001900@kfupm.edu.sa" class="auth_mail" title="E-mail the corresponding authorAuthor Vitae
- 关键词:Economic Denial of Sustainability attacks (EDoS) ; Cloud computing ; Network security ; Rate control
- 刊名:Computer Networks
- 出版年:2016
- 出版时间:14 March 2016
- 年:2016
- 卷:97
- 期:Complete
- 页码:31-47
- 全文大小:3919 K
文摘
Cloud computing is a paradigm that provides scalable IT resources as a service over the Internet. Vulnerabilities in the cloud infrastructure have been readily exploited by the adversary class. Therefore, providing the desired level of assurance to all stakeholders through safeguarding data (sensitive or otherwise) which is stored in the cloud, is of utmost importance. In addition, protecting the cloud from adversarial attacks of diverse types and intents, cannot be understated. Economic Denial of Sustainability (EDoS) attack is considered as one of the concerns that has stalled many organizations from migrating their operations and/or data to the cloud. This is because an EDoS attack targets the financial component of the service provider. In this work, we propose a novel and reactive approach based on a rate limit technique, with low overhead, to detect and mitigate EDoS attacks against cloud-based services. Through this reactive scheme, a limited access permission for cloud services is granted to each user. Experiments were conducted in a laboratory cloud setup, to evaluate the performance of the proposed mitigation technique. Results obtained show that the proposed approach is able to detect and prevent such an attack with low cost and overhead.