A secure smart-work service model based OpenStack for Cloud computing
- 1.3k Downloads
Cloud computing technology is a general concept and idea such as existing distributed computing, parallel computing, Pervasive computing and Ubiquitous computing. We have been studying OpenStack which was an Open cloud project under the KOREN (Korea Advanced Research Network) environments. In this paper, we propose a secure smart-work service model-based OpenStack. There are mainly two kinds of security breaches that can occur under the proposed environment. Nova is vulnerable to DoS attack in OpenStack. SQL Injection can be attacked in the process during which the user requests authorization, which results in data being saved in Swift. Looking more deeply into these two types of attack, we can divide DoS attack into Jolt2, Tear-drop, and SYN-Flooding attack. We simulated attacks in an experimental environment and summarized the results. With the objective of being able to provide Smart-Work service in the KOREN environment, we proposed solutions to various kinds of attacks against the security system and carried out modeling work with the data from the experiment conducted in the Cloud service environment we examined above.
KeywordsOpenStack Cloud computing Cloud service Smart-work model Security threats Evaluation Modeling
This work was supported by NIA, KOREA under the KOREN program (1295100001-120010100).
- 1.Mell, P., Grance, T.: NIST Cloud Computing Definitions. http://csrc.nist.gov/gorups/SNS/cloudcomputing (2009)
- 3.Thorpe, S.: Virtual machine history model framework for a data cloud digital investigation. J. Converg. 3(4), 9–14 (2012) Google Scholar
- 4.Baek, S.-J., Park, S.-M., Yang, S.-H., Song, E.-H., Jeong, Y.-S.: Efficient server virtualization using grid service infrastructure. J. Inf. Process. Syst. 6(4), 553–562 (2010) Google Scholar
- 5.Song, E.-H., Kim, H.-W., Jeong, Y.-S.: Visual monitoring system of multi-hosts behavior for trustworthiness with mobile cloud. J. Inf. Process. Syst. 8(2), 347–358 (2012) Google Scholar
- 6.Gellman, R.: Privacy in the Clouds: Risks to Privacy and Confidentiality from Cloud Computing. http://www.worldprivacyforum.org/pdf/WPF_Cloud_Privacy_Report.pdf (2009)
- 10.Beloglazov, A., Piraghaj, S.F., Alrokayan, M., Buyya, R.: Deploying OpenStack on CentOS using the KVM hypervisor and GlusterFS distributed file system. Technical Report CLOUD-TR-2012-3 (2012) http://www.cloudbus.org/reports/OpenStack-CentOS-KVM-glusterfs-guide-Aug2012.pdf
- 12.Sefraoui, O., Aissaoui, M., Eleuldj, M.: OpenStack: toward an open-source solution for cloud computing. Int. J. Comput. Appl. 55(3), 38–42 (2012) Google Scholar
- 13.Jackson, K.: OpenStack Cloud Computing Cookbook. Packt Publishing, Birmingham (2012). ISBN 9781849517324 Google Scholar
- 14.OpenStack LLC: Openstack: The Open Source Cloud Operating System. http://www.openstack.org/software/ (2012)
- 15.OpenStack LLC: OpenStack Compute Administration Manual. http://docs.openstack.org/trunk/openstack-compute/admin/content/index.html (2012)
- 16.OpenStack LLC: OpenStack Install and Deploy Manual. http://docs.openstack.org/diablo/openstack-compute/admin/os-compute-adminguide-diablo.pdf (2012)