頁籤選單縮合
題名 | Detecting Cache-Based Side Channel Attacks in the Cloud: An Approach with Cascade Detection Mode |
---|---|
作者 | Yu, Si; Gui, Xiaolin; Zhang, Xuejun; Lin, Jiancai; Dai, Min; | 書刊名 | Journal of Internet Technology |
卷期 | 15:6 2014.11[民103.11] |
頁次 | 頁903-915 |
分類號 | 312.76 |
關鍵詞 | Cloud computing; Virtualization; Information security; Side channel attacks; Attack detection; |
語文 | 英文(English) |
英文摘要 | Information leakage introduced by side channel attacks (SCA) has become a serious threat to the cloud. Using SCA, malicious users can steal private information from other virtual machines by analyzing third party distinct resource-contention responses. To the best of our knowledge, the investigation in detecting SCA in the cloud is very limited. In this paper, we introduce a novel approach for detecting cache-based side channel attacks, named SideDetector, based on the observation that the creation of a side channel has certain effects on the resource utilization in both the host machines and virtual machines. First, exploring this observation, we analyze the attack features from both the hosts and guests and propose four detection metrics. Second, we investigate the use of cascade detection mode, which consists of the stage of host detection and guest detection. Third, shape tests and regularity tests are used to calculate the detection metrics, and pattern recognition techniques are used to indicate the attacks. Finally, we conduct a series of experiments to evaluate the SideDetector. The experimental results show that SideDetector is capable of detecting the cache-based side channel attacks in the cloud effectively. |
本系統之摘要資訊系依該期刊論文摘要之資訊為主。