Title : 
Reconsidering Intrusion Monitoring Requirements in Shared Cloud Platforms
         
        
            Author : 
Lazri, Kahina ; Laniepce, Sylvie ; Ben-Othman, Jalel
         
        
            Author_Institution : 
Security Dept., Orange Labs., Caen, France
         
        
        
        
        
        
            Abstract : 
Multi-tenancy is the core feature that enables efficiency and cost effectiveness of cloud computing. However, it brings several new security concerns. Ensuring ´strong isolation´ between co-localized tenants remains the most critical issue. This work aims at highlighting new attack strategies brought by the resource sharing paradigm in multi-tenant elastic IaaS Clouds in order to understand impacts of these attacks on the design of Intrusion Detection Systems in Cloud. The first part of this paper surveys the literature related to accepted vulnerabilities. Several Proofs of Concept are described and classified according to the results of the exploitation of these vulnerabilities. In the second part, we argue the existence of new attack strategies able to take advantage of the mechanisms which enable autonomic elasticity. These mechanisms are by nature sensitive to VMs resource consumption which can be easily manipulated by attacks. Finally, we give a representation of the presented vulnerabilities to engage a discussion on the limitations of pure user-centric security monitoring approaches for guaranteeing VM security.
         
        
            Keywords : 
cloud computing; security of data; virtual machines; VM resource consumption; VM security; attack strategies; autonomic elasticity; cloud computing; colocalized tenants; concept proofs; intrusion detection systems; intrusion monitoring requirements; multitenant elastic IaaS clouds; resource sharing paradigm; security concerns; shared cloud platforms; user-centric security monitoring approaches; Cloud computing; Elasticity; Hardware; Resource management; Security; Virtual machine monitors; Virtualization;
         
        
        
        
            Conference_Titel : 
Availability, Reliability and Security (ARES), 2013 Eighth International Conference on
         
        
            Conference_Location : 
Regensburg
         
        
        
            DOI : 
10.1109/ARES.2013.83