What is the purpose of this paper?

In this paper the authors highlighted Multi-Tenancy as vulnerability and provided in depth understanding related to different dimensions of MultiTenancy.

What is the way to eliminate Multi-Tenancy?

in order to eliminate the risk of Multi-Tenancy the authors have to eliminate Multi-Tenancy and that can be achieved by either eliminating what makes Multi-Tenancy vulnerable or eliminating what forms Multi-Tenancy in the first place.

What is the assumption that the Cloud provider is allowing MultiTenancy?

the assumption that the Cloud provider is allowing MultiTenancy is made, which is a natural result of allowing resource sharing over virtualization; this is noticed in most Cloud implementations.

What is the notable characteristic of Google trace logs?

Another study by [33] which has examined Google trace logs in terms of workload characteristics stated that the most notable workload characteristic is heterogeneity.

What is the way to eliminate the risk of multi-tenancy?

When security comes first, a natural proposal is to eliminate this risk; [12] proposes the elimination of the virtualization layer in order to increase system security.

What are the main findings of the study?

Those studies were focusing on resources utilization, scheduling, relations with Grid/HPC systems, scalability, cluster management and behavior of workloads but with little focus on user behavior, security and the patterns of the workloads.

What is the strategy for minimizing the risk?

the second best strategy is to mitigate the risk and this is what the authors are after; where the authors try to balance between the benefits brought by Multi-Tenancy and the security putting in minds other factors such as performance and cost.

How can the authors detect a suspicious behavior in the dataset?

In this section the authors will try to find out, is it possible to sense a suspicious behavior in the dataset, and to do so the authors will utilize the attack model proposed earlier and try to highlight if the authors can map it to the dataset either entirely or partially.

Open AccessProceedings Article10.1109/SOSE.2014.50

Multi-tenancy in Cloud Computing

Hussain AlJahdali, +5 more

- 07 Apr 2014

- pp 344-351

109

TL;DR: An attack model based on a threat model designed to take advantage of Multi-Tenancy situation only is proposed which will try to recognize the proposed attack model empirically from Google trace logs.

Abstract: As Cloud Computing becomes the trend of information technology computational model, the Cloud security is becoming a major issue in adopting the Cloud where security is considered one of the most critical concerns for the large customers of Cloud (i.e. governments and enterprises). Such valid concern is mainly driven by the Multi-Tenancy situation which refers to resource sharing in Cloud Computing and its associated risks where confidentiality and/or integrity could be violated. As a result, security concerns may harness the advancement of Cloud Computing in the market. So, in order to propose effective security solutions and strategies a good knowledge of the current Cloud implementations and practices, especially the public Clouds, must be understood by professionals. Such understanding is needed in order to recognize attack vectors and attack surfaces. In this paper we will propose an attack model based on a threat model designed to take advantage of Multi-Tenancy situation only. Before that, a clear understanding of Multi-Tenancy, its origin and its benefits will be demonstrated. Also, a novel way on how to approach Multi-Tenancy will be illustrated. Finally, we will try to sense any suspicious behavior that may indicate to a possible attack where we will try to recognize the proposed attack model empirically from Google trace logs. Google trace logs are a 29-day worth of data released by Google. The data set was utilized in reliability and power consumption studies, but not been utilized in any security study to the extent of our knowledge.

AI Agents for this Paper

Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps

Most frequently asked questions

1. What are the contributions mentioned in the paper "Multi-tenancy in cloud computing" ?

In this paper the authors will propose an attack model based on a threat model designed to take advantage of Multi-Tenancy situation only.. Finally, the authors will try to sense any suspicious behavior that may indicate to a possible attack where they will try to recognize the proposed attack model empirically from Google trace logs.. The data set was utilized in reliability and power consumption studies, but not been utilized in any security study to the extent of their

2. What is the strategy for dealing with Multi-Tenancy?

Since the authors cannot eliminate the side channel attacks and cannot tolerate the loss of major features due to the elimination of either virtualization or resource sharing then the eliminating the risk strategy is not acceptable and is not applicable when it comes to dealing with Multi-Tenancy risks.

3. What is the effect of minimizing the probability of being a Multi-Tenant?

In addition, minimizing the probability of being a Multi-Tenant by controlling the resource allocation mechanism will have an impact on the underlying layer (i.e. layer 3) as layer 3 is dependent on layer 2.VI.

4. How many tasks are tagged as killed?

The dataset consists of 25,000,000 task and 6,608,917 of the total number of tasks is tagged as killed tasks which represent 26.4% of the total number of tasks.

Figure 5: Approach in Securing Multi-Tenancy.

Figure 6: Number of Killed Tasks per User Where (A) is the lift figure and (B) is the right figure.

Citations

•Journal Article•10.1186/S13677-017-0090-3

Fog computing security: a review of current applications and security solutions

Saad Khan, +2 more

- 01 Dec 2017

TL;DR: The impact of security issues and possible solutions are determined, providing future security-relevant directions to those responsible for designing, developing, and maintaining Fog systems.

...read moreread less

393

•Journal Article•10.1109/ACCESS.2021.3073203

A Systematic Literature Review on Cloud Computing Security: Threats and Mitigation Strategies

Bader Alouffi, +5 more

- 14 Apr 2021

- IEEE Access

TL;DR: In this paper, a systematic literature review (SLR) is aimed to review the existing research studies on cloud computing security, threats, and challenges, and the results showed that data tampering and leakage were among the highly discussed topics in the chosen literature.

...read moreread less

251

•Journal Article•10.14569/IJACSA.2016.070464

Data Security, Privacy, Availability and Integrity in Cloud Computing: Issues and Current Solutions

Sultan Aldossary, +1 more

- 01 Apr 2016

- International Journal of Advanced Comput...

TL;DR: Those issues that are preventing people from adopting the cloud are presented and a survey on solutions that have been done to minimize risks of these issues are given.

...read moreread less

177

Journal Article•10.1016/J.COMPELECENG.2016.03.004

Cloud security: Emerging threats and current solutions

Luigi Coppolino, +3 more

- 01 Apr 2017

- Computers & Electrical Engineering

TL;DR: A comprehensive analysis of the main threats that hamper cloud computing adoption on a wide scale, and a right to the point review of the solutions that are currently being provided by the major vendors are provided.

...read moreread less

157

•Book Chapter•10.1007/978-3-030-43795-4_5

Feasibility of Fog Computing

Blesson Varghese, +3 more

- 11 Apr 2019

- arXiv: Distributed, Parallel, and Cluste...

TL;DR: For an online game use-case, it was found that the average response time for a user is improved by 20% when using the edge of the network in comparison to using a cloud-only model.

...read moreread less

108

...

Expand

References

•Journal Article

Above the Clouds: A Berkeley View of Cloud Computing

Michael Armbrust, +10 more

- 10 Feb 2009

- Science

TL;DR: This work focuses on SaaS Providers (Cloud Users) and Cloud Providers, which have received less attention than SAAS Users, and uses the term Private Cloud to refer to internal datacenters of a business or other organization, not made available to the general public.

...read moreread less

7.2K

Journal Article•10.1016/J.JNCA.2010.07.006

Review: A survey on security issues in service delivery models of cloud computing

S. Subashini, +1 more

- 01 Jan 2011

- Journal of Network and Computer Applicat...

TL;DR: A survey of the different security risks that pose a threat to the cloud is presented and a new model targeting at improving features of an existing model must not risk or threaten other important features of the current model.

...read moreread less

2.8K

Proceedings Article•10.1145/1653662.1653687

Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds

Thomas Ristenpart, +3 more

- 09 Nov 2009

TL;DR: It is shown that it is possible to map the internal cloud infrastructure, identify where a particular target VM is likely to reside, and then instantiate new VMs until one is placed co-resident with the target, and how such placement can then be used to mount cross-VM side-channel attacks to extract information from a target VM on the same machine.

...read moreread less

2.4K

Journal Article•10.1016/J.FUTURE.2010.12.006

Addressing cloud computing security issues

Dimitrios Zissis, +1 more

- 01 Mar 2012

- Future Generation Computer Systems

TL;DR: This paper proposes introducing a Trusted Third Party, tasked with assuring specific security characteristics within a cloud environment, and presents a horizontal level of service, available to all implicated entities, that realizes a security mesh, within which essential trust is maintained.

...read moreread less

Proceedings Article•10.1109/AINA.2010.187

Cloud Computing: Issues and Challenges

Tharam S. Dillon, +2 more

- 20 Apr 2010

TL;DR: This paper first discusses two related computing paradigms - Service-Oriented Computing and Grid computing, and their relationships with Cloud computing, then identifies several challenges from the Cloud computing adoption perspective.

...read moreread less

1.5K

...

Expand

Multi-tenancy in Cloud Computing

Chat with Paper

AI Agents for this Paper

Most frequently asked questions

1. What are the contributions mentioned in the paper "Multi-tenancy in cloud computing" ?

2. What is the strategy for dealing with Multi-Tenancy?

3. What is the effect of minimizing the probability of being a Multi-Tenant?

4. How many tasks are tagged as killed?

5. What is the purpose of this paper?

6. What is the way to eliminate Multi-Tenancy?

7. What is the assumption that the Cloud provider is allowing MultiTenancy?

8. What is the notable characteristic of Google trace logs?

9. What is the way to eliminate the risk of multi-tenancy?

10. What are the main findings of the study?

11. What is the strategy for minimizing the risk?

12. How can the authors detect a suspicious behavior in the dataset?

Figures

Citations

Fog computing security: a review of current applications and security solutions

A Systematic Literature Review on Cloud Computing Security: Threats and Mitigation Strategies

Data Security, Privacy, Availability and Integrity in Cloud Computing: Issues and Current Solutions

Cloud security: Emerging threats and current solutions

Feasibility of Fog Computing

References

Above the Clouds: A Berkeley View of Cloud Computing

Review: A survey on security issues in service delivery models of cloud computing

Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds

Addressing cloud computing security issues

Cloud Computing: Issues and Challenges

Related Papers (5)

Addressing cloud computing security issues

Review: A survey on security issues in service delivery models of cloud computing

The NIST Definition of Cloud Computing

Study on the Security Models and Strategies of Cloud Computing

State-of-the-art cloud computing security taxonomies: a classification of security challenges in the present cloud computing environment