Maximization of Cloud Network Survivability Considering Attack Synergy

Date Issued
2014
Date
2014
Author(s)
Hsiao, Wei-Wen
URI
Abstract
Many organizations rely on networks to provide various types of services for customers and users. Internet has become the basic necessity in our daily life. From the enterprises’ perspectives, since hackers and attackers are getting more and more powerful and skillful, this is a challenging problem. For instance, in nowadays, attackers could launch a collaborative attack, which is a powerful attack approach that enables a group of attackers gathering their attack power toward a single target. Further, the synergy effects of this particular type of attacks could cause more damage than traditional attack approaches. We proposed a synergy effect that described the collaborative attack that similar to real life. In this model, we also demonstrate that more people in the same group will not always bring better attack power. Not only attack approaches but also the computing infrastructure have been rapidly innovated. Cloud computing is a main trend and has caught much attentions. Our thesis will implement the network base on cloud environment. We provide two defense strategies—“Local defense mechanism” and “Migration mechanism.” In “Local defense mechanism”, when virtual machine monitor (VMM) detects a node being attacked but yet being compromised, it can increase defense resources for all the virtual machines (VMs) that belong to this VMM. As for, “Migration mechanism”, it enables VMs dynamically move from one server to another. In our thesis, we could find that “Migration mechanism” has a great defense capability than “Local defense mechanism.” Our goal is to help companies find an effective way to cope with varieties of threats. In addition to traditional defense strategies, such as firewall, IDS, and IPS, we incorporate local defense mechanism and virtual machine migration to enhance system survivability. Moreover, under limited budget, it is important for defenders or companies to seek the optimal way of allocating defense resources against attackers’ invasions. The problem is modeled as a bi-level mathematical formulation. Combining with the concept of Monte Carlo Simulation, a variety of feasible attack-defense scenarios are simulated to find effective defense strategies.
Subjects
協同攻擊
網路存活度
攻擊綜效
虛擬機器搬移
資源分配
最佳化
數學歸納法
蒙地卡羅模擬法
Type
thesis
File(s)
Loading...
Thumbnail Image
Name

ntu-103-R01725029-1.pdf

Size

23.32 KB

Format

Adobe PDF

Checksum

(MD5):c69d6160ae8ea0007ac21eac8662b708

臺大位居世界頂尖大學之列,為永久珍藏及向國際展現本校豐碩的研究成果及學術能量,圖書館整合機構典藏(NTUR)與學術庫(AH)不同功能平台,成為臺大學術典藏NTU scholars。期能整合研究能量、促進交流合作、保存學術產出、推廣研究成果。

To permanently archive and promote researcher profiles and scholarly works, Library integrates the services of “NTU Repository” with “Academic Hub” to form NTU Scholars.

總館學科館員 (Main Library)
醫學圖書館學科館員 (Medical Library)
社會科學院辜振甫紀念圖書館學科館員 (Social Sciences Library)

開放取用是從使用者角度提升資訊取用性的社會運動,應用在學術研究上是透過將研究著作公開供使用者自由取閱,以促進學術傳播及因應期刊訂購費用逐年攀升。同時可加速研究發展、提升研究影響力,NTU Scholars即為本校的開放取用典藏(OA Archive)平台。(點選深入了解OA)

  • 請確認所上傳的全文是原創的內容,若該文件包含部分內容的版權非匯入者所有,或由第三方贊助與合作完成,請確認該版權所有者及第三方同意提供此授權。
    Please represent that the submission is your original work, and that you have the right to grant the rights to upload.
  • 若欲上傳已出版的全文電子檔,可使用Open policy finder網站查詢,以確認出版單位之版權政策。
    Please use Open policy finder to find a summary of permissions that are normally given as part of each publisher's copyright transfer agreement.

Built with DSpace-CRIS software - Extension maintained and optimized by 4Science