Haicheng Tu,Hui-Liang Shen,Yongxiang Xia

DOI: https://doi.org/10.1109/iscas45731.2020.9180816

2020-01-01

Abstract:Under the variety of information and communication technologies, the control center can securely and reliably operate power grid during the system disturbances and natural events. Specifically, when the initial failures are detected by cyber monitoring, the system will timely take emergency protecting operations to restrain the spreading of failures. Although cyber network makes the system more robust, they also increase the risk from the cyber network. In this paper, we firstly consider a control strategy into the cascading failures model. Then, we study how the cyber attack - False negatives attack confuses the control center, and makes the control center can not take emergency operation timely, causing the failure continue spreading. We propose an optimization problem to model the above assumptions and, by solving the optimization problem, study the impact of different attack scenarios on power system.

Gregory Levitin,Liudong Xing,Yuanshun Dai

DOI: https://doi.org/10.1016/j.future.2016.12.025

2017-01-01

Abstract:Cloud computing provides a paradigm where users can utilize various configurable IT resources in an on-demand and cost-effective manner. However, new security risks such as co-resident attacks have arisen. This paper models a situation when a user partitions and distributes sensitive data among several virtual machines to make unauthorized access to the entire data difficult in a cloud environment subject to the co-resident attacks. The attacker creates virtual machines in the same environment aiming to get access to users’ data. The cloud resource management system distributes all virtual machines among servers at random. The unauthorized access to data associated with user’s virtual machine is possible only if this machine co-resides in the same server with the attacker’s virtual machines. It is assumed that creating a side channel and getting access to the data is a common event for all the servers in which user’s and attacker’s virtual machines co-reside. Based on the suggested probabilistic model, an optimal number of user’s virtual machines (i.e., number of different data blocks partitioned) is obtained for a fixed or an uncertain number of attacker’s virtual machines, and for the case where the attacker knows the number of user’s virtual machines and responds optimally on any number of these machines. Examples demonstrate that the proposed optimal data partitioning policy can effectively mitigate effects of the co-resident attacks through minimizing user’s losses.

Liudong Xing,Gregory Levitin

DOI: https://doi.org/10.1016/j.ress.2017.06.006

IF: 7.247

2017-01-01

Reliability Engineering & System Safety

Abstract:This paper models cloud computing systems subject to co-resident attacks, where an attacker can get access to a user's sensitive data through co-residence of their virtual machines on the same physical server. Both attackers’ and users’ virtual machines are distributed among cloud servers at random. It is assumed that attacker's successes in getting unauthorized access to data in different servers are independent events that can occur with a given probability. To mitigate effects of the co-resident attacks, a data protection policy based on the partition technique is applied where sensitive data are divided and distributed among multiple virtual machines in the cloud. As the information is useful only in its integrity, the attacker should get access to all of the separated data blocks to steal the information. On the other hand, corrupting any block can destroy the information and make it useless. Hence, creating more blocks can make data more difficult to steal (lower data theft probability), but easier to corrupt (higher data corruption probability). This work makes original contributions by formulating and solving constrained optimization problems to balance the data theft and data corruption probabilities. Particularly probabilistic models are first presented, which derive probabilities that an attacker can succeed in the data theft and data corruption. Further an optimal number of different data blocks (corresponding to the number of user's virtual machines) is obtained, which minimizes the data theft probability subject to meeting a data corruption probability constraint. Both fixed and uncertain numbers of attacker's virtual machines are considered. Numerical examples are presented to demonstrate influence of cloud system parameters on the optimal user's data partition policy obtained.

Heping Jia,Rui Peng,Yi Ding,Changzheng Shao

DOI: https://doi.org/10.1177/1748006x19885508

2020-01-01

Abstract:With the advancement of cloud computing and internet of things, data are usually stored on distributed computers and these data may risk being lost or stolen. In this article, we consider a common case where the entirety of the data is partitioned into several parts and each data part can be allocated to one or more computers. In the case where a computer fails, all the data parts on it are lost. Before the failure of any computer, the data parts may also be stolen by hackers. The basic model of computer failure and computer intrusion resulting in the theft of all the data parts on the computer is considered first. Then, the case is extended to a general model where computer failure, as well as data part corruption and theft caused by hacking are embedded. It is essential to study the reliability of distributed storage systems considering both data loss and data theft, which can be a basis for decision making on system structure optimization. In this article, a multi-valued decision diagram–based approach is developed to quantitatively evaluate system reliability for both models considering the time-dependence property of sequential events. The proposed method is applicable to systems where the random time to failure, theft, or corruption follows arbitrary distributions including the commonly used exponential distributions. Illustrative examples are provided to validate the proposed method.

Gregory Levitin,Liudong Xing,Hong-Zhong Huang

DOI: https://doi.org/10.1111/risa.13219

2018-01-01

Risk Analysis

Abstract:Empowered by virtualization technology, service requests from cloud users can be honored through creating and running virtual machines. Virtual machines established for different users may be allocated to the same physical server, making the cloud vulnerable to co-residence attacks where a malicious attacker can steal a user's data through co-residing their virtual machines on the same server. For protecting data against the theft, the data partition technique is applied to divide the user's data into multiple blocks with each being handled by a separate virtual machine. Moreover, early warning agents (EWAs) are deployed to possibly detect and prevent co-residence attacks at a nascent stage. This article models and analyzes the attack success probability (complement of data security) in cloud systems subject to competing attack detection process (by EWAs) and data theft process (by co-residence attackers). Based on the suggested probabilistic model, the optimal data partition and protection policy is determined with the objective of minimizing the user's cost subject to providing a desired level of data security. Examples are presented to illustrate effects of different model parameters (attack rate, number of cloud servers, number of data blocks, attack detection time, and data theft time distribution parameters) on the attack success probability and optimization solutions.

Gregory Levitin,Liudong Xing,Yuanshun Dai

DOI: https://doi.org/10.1016/j.ejor.2017.11.064

IF: 6.4

2017-01-01

European Journal of Operational Research

Abstract:The virtualization technology, particularly virtual machines (VMs) used in cloud computing systems have raised unique security and survivability risks for cloud users. This paper focuses on one of such risks, co-residence attacks where a user's information in one VM can be accessed (stolen) or corrupted through side channels by a malicious attacker's VM co-residing on the same server. We model and optimize users' data protection policy in which sensitive data are partitioned into several blocks to enhance data security and multiple replicas are further created for each block to provide data survivability in a cloud environment subject to the co-residence attacks. Both users' and attackers' VMs are distributed among cloud servers at random. Probabilistic models are first suggested to derive the overall probabilities of an attacker's success in data theft and data corruption. Based on the suggested probabilistic evaluation models, optimization problems of obtaining the data partition/replication policy to balance data security, data survivability and a user's overheads are formulated and solved. The possible user's uncertainty about the number of attacker's VMs is taken into account. Numerical examples demonstrating influence of different constraints on the optimal policy are presented. (C) 2017 Elsevier B.V. All rights reserved.

Xiaoliang Wang,Xiaohong Jiang,Achille Pattavina,Sanglu Lu

DOI: https://doi.org/10.1109/hpsr.2012.6260838

2012-01-01

Abstract:The communication network is now one of the critical infrastructures in our society. However, the current communication networks are facing more and more large-scale region failure threats, such as natural disasters (e.g. earthquake, tornado) and physical attacks (e.g. dragging anchors or EMP attack). Therefore, a deep understanding of network behaviors under region failure is essential for the design and maintenance of future highly survivable networks. In this paper, we focus on the network vulnerability assessment under the geographically correlated region failure(s) caused by a random “line-segment” cut, an important region failure model that can efficiently capture the behaviors of some region failures like earthquake, tornado and anchor cutting. To facilitate such vulnerability assessment, we apply the geometrical probability theory to design a grid partition-based estimation scheme for Disrupted Link Capacity, Pairwise Traffic Reduction and Pairwise Disconnection Probability, three commonly used metrics for statistical vulnerability assessment. A theoretical framework is also established to determine a suitable grid partition such that a specified estimation error requirement is satisfied.

Lisheng Ma,Xiaohong Jiang,Bin Wu,Achille Pattavina,Norio Shiratori

DOI: https://doi.org/10.1016/j.comnet.2016.03.008

IF: 5.493

2016-01-01

Computer Networks

Abstract:Data center network (DCN) and content placement with the consideration of potential large-scale region failure is critical to minimize the DCN loss and disruptions under such catastrophic scenario. This paper considers the optimal placement of DCN and content for DCN failure probability minimization against a region failure. Given a network for DCN placement, a general probabilistic region failure model is adopted to capture the key features of a region failure and to determine the failure probability of a node/link in the network under the region failure. We then propose a general grid partition-based scheme to flexibly define the global nonuniform distribution of potential region failure in terms of its occurring probability and intensity. Such grid partition scheme also helps us to evaluate the vulnerability of a given network under a region failure and thus to create a “vulnerability map” for DCN and content placement in the network. With the help of the “vulnerability map”, we further develop an integer linear program (ILP)-based theoretical framework to identify the optimal placement of DCN and content, which leads to the minimum DCN failure probability against a region failure. A heuristic is also suggested to make the overall placement problem more scalable for large-scale networks. Finally, an example and extensive numerical results are provided to illustrate the proposed DCN and content placement.

Heping Jia,Yi Ding,Rui Peng

DOI: https://doi.org/10.1109/icsrs.2018.8688837

2018-01-01

Abstract:With the deep integration of cyber physical systems, data storage systems might suffer from both physical failures and cyber attacks which significantly impact the systems' reliability. The data can be partitioned into several data parts to enhance data security and multiple replications can be created for each data part in the storage systems. In this paper, both the failures of data storage devices and cyber attacks including data theft and data corruption are considered in the proposed system model. Moreover, the multi-valued decision diagram (MDD) technique is developed for considering chronological characteristics of sequential events to achieve the quantitative reliability assessment. A numerical example is provided to validate the proposed model and method.

Xiaoliang Wang,Xiaohong Jiang,Achille Pattavina

DOI: https://doi.org/10.1109/HPSR.2011.5986021

2011-01-01

Abstract:The mission critical network infrastructures are facing potential large region threats, both intentional (like EMP attack, bomb explosion) and natural (like earthquake, flooding). The available research on region failure related vulnerability studies generally adopt a kind of simple “deterministic” region failure models, which can not capture some important features of real region failure scenarios, where a network component in the region only fails with certain probability, and more importantly, such failure probability tends to vary with both its dimension and its distance to failure center. In this paper, we provide a more general “probabilistic” region failure model to capture the key features of a region failure and apply it for the network vulnerability assessment. To facilitate such assessment, we adopt a grid partition-based scheme to estimate various statistical network metrics under a random region failure. A theoretical framework is also established to determine a suitable grid partition such that a specified estimation error requirement is satisfied. The grid partition technique is also useful for identifying the vulnerable zones of a network, which can guide network designers to initiate proper network protection against such failures. The work in this paper helps us more deeply understand the network vulnerability behavior under region failure and facilitates the design and maintenance of future highly survivable mission critical networks.

Zeqi Zhang,Chunxiao Jiang,Yong Ren

DOI: https://doi.org/10.1109/wcnc.2016.7564974

2016-01-01

Abstract:Wireless network's traffic capacity is one of the most important measurements of network performance. In a vulnerable network environment, attacks for network components can cause degradation of traffic capacity and lead to increasing network congestion and overall performance degradation. In this paper, we propose an effective protection resources allocation scheme which allocates limited protection resources of nodes based on assessment of vulnerability of network components. This scheme proves to be the best allocation strategy in respect to enhancing the quantity of network traffic capacity. The simulation results show that the proposed allocation scheme outperforms other traditional allocation schemes based on critical node analysis. A thorough analysis of traffic capacity and network vulnerability has also been provided.

Yuxia Cheng,Qing Wu,Wenzhi Chen,Bei Wang

DOI: https://doi.org/10.1016/j.jpdc.2018.07.014

IF: 4.542

2018-01-01

Journal of Parallel and Distributed Computing

Abstract:Transmissible cyber threats have become one of the most serious security issues in cyberspace. Many techniques have been proposed to model, simulate and identify threats’ sources and their propagation in large-scale distributed networks. Most techniques are based on the analysis of real networks dataset that contains sensitive information. Traditional in-memory analysis of these dataset often causes data leakage due to system vulnerabilities. If the dataset itself is compromised by adversaries, this threat cost would be even higher than the threat being analysed. In this paper, we propose a new distributed shielded execution framework (Disef) for cyber threats analysis. The Disef framework enables efficient distributed analysis of network dataset while achieves security guarantees of data confidentiality and integrity. In-memory dataset is protected by using a new encrypted key–value format and could be efficiently transferred into Intel SGX enabled enclaves for shielded execution. Our experimental results showed that the proposed framework supports secure in-memory analysis of large network dataset and has comparable performance with systems that have no confidentiality and integrity guarantees.

Shouhuai Xu,Xiaohu Li,Timothy Paul Parker,Xueping Wang

DOI: https://doi.org/10.1109/tifs.2010.2093521

IF: 7.231

2011-01-01

IEEE Transactions on Information Forensics and Security

Abstract:How can we protect sensitive data of average users? In this paper, we propose taking advantage of real-life social trust between average users (called "trust-based social networks") as well as threshold cryptography. This leads to a new type of complex systems, for which we define and characterize the following novel properties: 1) attack-resilience, which captures the consequences of computers getting compromised; 2) security utility of anonymous social networks, which captures the security gained when the underlying social network links are not known to the attacker; 3) security utility of psychological soundness, which captures the security gained when a user keeps a decisive share of its sensitive data; 4) availability, which captures the effect when computers are not always responsive; 5) the trade-off between attack-resilience and availability.

Shu-Di Bao,Yang Lu,Yan-Kai Yang,Chun-Yan Wang,Meng Chen,Guang-Zhong Yang

DOI: https://doi.org/10.1109/ICC.2015.7248367

2015-01-01

Abstract:With increasing use of cloud storage for healthcare applications, potential security risks and the need for enhanced security solutions are becoming a pressing issue for clinical adoption. In this paper, a data partitioning and scrambling method at the application layer is proposed for healthcare data, where a tiny part of the original data is used to scramble the remaining data without any cryptographic key, and the former is kept locally while the latter under extra protection is sent to cloud platforms. Theoretical and experimental analyses have been carried out to demonstrate the security performance of the proposed method, which can be easily deployed in any existing communication systems as an add-on for security.

Cong Wang,Qian Wang,Kui Ren,Wenjing Lou

DOI: https://doi.org/10.1109/iwqos.2009.5201385

2009-01-01

Abstract:Cloud computing has been envisioned as the next-generation architecture of IT enterprise. In contrast to traditional solutions, where the IT services are under proper physical, logical and personnel controls, cloud computing moves the application software and databases to the large data centers, where the management of the data and services may not be fully trustworthy. This unique attribute, however, poses many new security challenges which have not been well understood. In this article, we focus on cloud data storage security, which has always been an important aspect of quality of service. To ensure the correctness of users' data in the cloud, we propose an effective and flexible distributed scheme with two salient features, opposing to its predecessors. By utilizing the homomorphic token with distributed verification of erasure-coded data, our scheme achieves the integration of storage correctness insurance and data error localization, i.e., the identification of misbehaving server (s). Unlike most prior works, the new scheme further supports secure and efficient dynamic operations on data blocks, including: data update, delete and append. Extensive security and performance analysis shows that the proposed scheme is highly efficient and resilient against Byzantine failure, malicious data modification attack, and even server colluding attacks.

Lin Qinying,Gui Xiaolin,Shi Deqin,Wang Xiaoping

2011-01-01

Journal of Computer Research and Development

Abstract:Cloud storage is a future ideal way of information storage,it provides user-friendly outsourced storage space to alleviate the explosive growth of information on the mass storage needs.However,due to cloud storage users worried about their loss of data,lack of confidence in cloud storage,leading to cloud storage popularizing difficult.In this paper,we first presents a safety model for cloud storage and the storage and access strategies to solve the confidential information stored in the data security and user anonymity.And its security is analyzed.Last we point out the key technology that this system must solve.

Fang Cui,Mohan Su,Chen Guo

DOI: https://doi.org/10.1109/ISPDS58840.2023.10235362

2023-07-14

Abstract:This paper conducts in-depth research and discussion on data storage security in cloud computing environment. This study collected 1000 dummy data from different organizations as the basic data set for the study. This data covers various types of sensitive information, including personally identifiable information, financial data, and medical records. We generate these data using appropriate data generation methods to ensure realistic characteristics and distributions. Based on existing backup technologies and algorithms, we evaluate the impact of different backup strategies on data security. Experimental results show that our data backup and recovery strategy and the application of encryption technology effectively improve the security of data in cloud storage. By selecting backup strategies and recovery mechanisms reasonably, we can ensure data availability and integrity. At the same time, employing a proper encryption scheme can protect data from the risk of unauthorized access and disclosure.

Computer Science

Jun Tang,Yong Cui,Qi Li,Kui Ren,Jiangchuan Liu,Rajkumar Buyya

DOI: https://doi.org/10.1145/2906153

IF: 16.6

2016-01-01

ACM Computing Surveys

Abstract:With the rapid development of cloud computing, more and more enterprises/individuals are starting to outsource local data to the cloud servers. However, under open networks and not fully trusted cloud environments, they face enormous security and privacy risks (e.g., data leakage or disclosure, data corruption or loss, and user privacy breach) when outsourcing their data to a public cloud or using their outsourced data. Recently, several studies were conducted to address these risks, and a series of solutions were proposed to enable data and privacy protection in untrusted cloud environments. To fully understand the advances and discover the research trends of this area, this survey summarizes and analyzes the state-of-the-art protection technologies. We first present security threats and requirements of an outsourcing data service to a cloud, and follow that with a high-level overview of the corresponding security technologies. We then dwell on existing protection solutions to achieve secure, dependable, and privacy-assured cloud data services including data search, data computation, data sharing, data storage, and data access. Finally, we propose open challenges and potential research directions in each category of solutions.

Bing Xiong,Kun Yang,Jinyuan Zhao,Keqin Li

DOI: https://doi.org/10.1016/j.jnca.2016.04.013

2017-01-01

Abstract:The continual growth of network traffic rates leads to heavy packet processing overheads, and a typical solution is to partition traffic into multiple network processors for parallel processing especially in emerging software-defined networks. This paper is thus motivated to propose a robust dynamic network traffic partitioning scheme to defend against malicious attacks. After introducing the conceptual framework of dynamic network traffic partitioning based on flow tables, we strengthen its TCP connection management by building a half-open connection separation mechanism to isolate false connections in the initial connection table (ICT). Then, the lookup performance of the ICT table is reinforced by applying counting bloom filters to cope with malicious behaviors such as SYN flooding attacks. Finally, we evaluate the performance of our proposed traffic partitioning scheme with real network traffic traces and simulated malicious traffic by experiments. Experimental results indicate that our proposed scheme outperforms the conventional ones in terms of packet distribution performance especially robustness against malicious attacks.

Hongwei Jiang

DOI: https://doi.org/10.12694/scpe.v24i4.2069

2023-11-17

Abstract:Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources. User’s data is stored in large database. The stored data can be accessed and modified by the clients over the Internet. The data is monitored by the Third Party Auditor (TPA) on behalf of the client. Therefore, integrity is lacked by the data stored on the servers. The data integrity is ensured by the cloud services that provide trust to the privacy of users. Aiming at the urgent problem of network data security in cloud computing operations, this paper proposed a security situation assessment system to grasp the security situation in real time. A set of cloud computing network data storage security is proposed. Through this model, the extraction of network data storage security situation elements, the design of network data storage security situation assessment scheme and the calculation method of network data storage security situation value are completed. The experimental results show the error of the predicted value obtained by the network data storage security situation assessment system. The effectiveness of the system model and the superiority of the improved algorithm is verified by the experimental results. This paper uses the cloud model to predict the cloud computing network security situation. On the other hand, the security situation value obtained by the situation assessment process can be used directly without training the original situation value. Performance improvement by the proposed technique over existing technique is seen and it is observe that the proposed technique is 23% and 34% better than the existing techniques.

English Else