Defense strategies for cloud computing multi-site server infrastructures

doi:10.1145/3154273.3154344

Title: Defense strategies for cloud computing multi-site server infrastructures

Full Record
Other Related Research

Abstract

We consider cloud computing server infrastructures for big data applications, which consist of multiple server sites connected over a wide-area network. The sites house a number of servers, network elements and local-area connections, and the wide-area network plays a critical, asymmetric role of providing vital connectivity between them. We model this infrastructure as a system of systems, wherein the sites and wide-area network are represented by their cyber and physical components. These components can be disabled by cyber and physical attacks, and also can be protected against them using component reinforcements. The effects of attacks propagate within the systems, and also beyond them via the wide-area network.We characterize these effects using correlations at two levels using: (a) aggregate failure correlation function that specifies the infrastructure failure probability given the failure of an individual site or network, and (b) first-order differential conditions on system survival probabilities that characterize the component-level correlations within individual systems. We formulate a game between an attacker and a provider using utility functions composed of survival probability and cost terms. At Nash Equilibrium, we derive expressions for the expected capacity of the infrastructure given by the number of operational servers connected to the network for sum-form, product-formmore » and composite utility functions.« less

Authors:

^[1]; Ma, Chris Y. T. ^[2]; He, Fei ^[3]

ORNL
Hang Seng Management College, Hon Kong
Texas A&M University, Kingsville, TX, USA

Publication Date:: 2018-01-01

Research Org.:: Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)

Sponsoring Org.:: USDOE Office of Science (SC), Advanced Scientific Computing Research (ASCR) (SC-21)

OSTI Identifier:: 1399413

DOE Contract Number:: AC05-00OR22725

Resource Type:: Conference

Resource Relation:: Conference: International Conference on Distributed Computing and Networking (ICDCN) - Varanasi, , India - 1/4/2018 5:00:00 AM-1/7/2018 5:00:00 AM

Country of Publication:: United States

Language:: English

Citation Formats


                    Rao, Nageswara S., Ma, Chris Y. T., and He, Fei. Defense strategies for cloud computing multi-site server infrastructures.  United States: N. p., 2018. 
        Web.  doi:10.1145/3154273.3154344.

Copy to clipboard


                    Rao, Nageswara S., Ma, Chris Y. T., & He, Fei. Defense strategies for cloud computing multi-site server infrastructures.  United States.  doi:10.1145/3154273.3154344.

Copy to clipboard


                    Rao, Nageswara S., Ma, Chris Y. T., and He, Fei. Mon .  
        "Defense strategies for cloud computing multi-site server infrastructures".  United States.  doi:10.1145/3154273.3154344.  https://www.osti.gov/servlets/purl/1399413.

Copy to clipboard


                    
@article{osti_1399413,

  title        = {Defense strategies for cloud computing multi-site server infrastructures},

  author       = {Rao, Nageswara S. and Ma, Chris Y. T. and He, Fei},

  abstractNote = {We consider cloud computing server infrastructures for big data applications, which consist of multiple server sites connected over a wide-area network. The sites house a number of servers, network elements and local-area connections, and the wide-area network plays a critical, asymmetric role of providing vital connectivity between them. We model this infrastructure as a system of systems, wherein the sites and wide-area network are represented by their cyber and physical components. These components can be disabled by cyber and physical attacks, and also can be protected against them using component reinforcements. The effects of attacks propagate within the systems, and also beyond them via the wide-area network.We characterize these effects using correlations at two levels using: (a) aggregate failure correlation function that specifies the infrastructure failure probability given the failure of an individual site or network, and (b) first-order differential conditions on system survival probabilities that characterize the component-level correlations within individual systems. We formulate a game between an attacker and a provider using utility functions composed of survival probability and cost terms. At Nash Equilibrium, we derive expressions for the expected capacity of the infrastructure given by the number of operational servers connected to the network for sum-form, product-form and composite utility functions.},

  doi          = {10.1145/3154273.3154344},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2018},

  month        = {1}

}

Copy to clipboard

Conference:

View Conference (0.81 MB)

DOI: 10.1145/3154273.3154344

Other availability

Please see Document Availability for additional information on obtaining the full-text document. Library patrons may search WorldCat to identify libraries that hold this conference proceeding.

Save / Share:

Export Metadata

Save to My Library

Similar records in OSTI.GOV collections:

Cyber–Physical Correlation Effects in Defense Games for Large Discrete Infrastructures

Journal Article Rao, Nageswara ; Ma, Chris ; He, Fei ; ... - Games

In certain critical infrastructures, correlations between cyber and physical components can be exploited to launch strategic attacks, so that disruptions to one component may affect others and possibly the entire infrastructure. Such correlations must be explicitly taken into account in ensuring the survival of the infrastructure. For large discrete infrastructures characterized by the number of cyber and physical components, we characterize the cyber–physical interactions at two levels: (i) the cyber–physical failure correlation function specifies the conditional survival probability of the cyber sub-infrastructure given that of the physical sub-infrastructure (both specified by their marginal probabilities), and (ii) individual survival probabilities ofmore »« less
DOI: 10.3390/g9030052

Full Text Available
Defense Strategies for Asymmetric Networked Systems with Discrete Components

Journal Article Rao, Nageswara ; Ma, Chris ; Hausken, Kjell ; ... - Sensors

We consider infrastructures consisting of a network of systems, each composed of discrete components. The network provides the vital connectivity between the systems and hence plays a critical, asymmetric role in the infrastructure operations. The individual components of the systems can be attacked by cyber and physical means and can be appropriately reinforced to withstand these attacks. We formulate the problem of ensuring the infrastructure performance as a game between an attacker and a provider, who choose the numbers of the components of the systems and network to attack and reinforce, respectively. The costs and benefits of attacks and reinforcementsmore »« less
Cited by 2
DOI: 10.3390/s18051421

Full Text Available
Cyber-Physical Correlations for Infrastructure Resilience: A Game-Theoretic Approach

Conference Rao, Nageswara S ; He, Fei ; Ma, Chris Y. T. ; ...

In several critical infrastructures, the cyber and physical parts are correlated so that disruptions to one affect the other and hence the whole system. These correlations may be exploited to strategically launch components attacks, and hence must be accounted for ensuring the infrastructure resilience, specified by its survival probability. We characterize the cyber-physical interactions at two levels: (i) the failure correlation function specifies the conditional survival probability of cyber sub-infrastructure given the physical sub-infrastructure as a function of their marginal probabilities, and (ii) the individual survival probabilities of both sub-infrastructures are characterized by first-order differential conditions. We formulate a resiliencemore »« less
Defense strategies and expected capacity of high performance computing infrastructures

Conference Rao, Nageswara S. ; Imam, Neena ; Ma, Chris Y. T. ; ...

We consider high performance computing infrastructures consisting of multiple sites connected over a wide-area network. These sites house heterogeneous computing systems, network elements and local-area connections, and the wide-area network plays a critical, asymmetric role of providing the vital connectivity between them. We model this infrastructure as a recursive system of systems, wherein the basic systems at the finest levels are composed of discrete cyber and physical components. These components may be disabled by cyber and physical disruptions, and their reinforcements protect against them albeit at a cost. We utilize results from a game formulation based on (i) characterizing themore »« less
DOI: 10.1145/3288599.3288625

Full Text Available
On Defense Strategies for Recursive System of Systems Using Aggregated Correlations

Conference Rao, Nageswara S. ; Ma, Chris Y. T. ; He, Fei

We consider a class of Recursive System of Systems (RSoS), wherein systems are recursively defined and the basic systems at finest level are composed of discrete cyber and physical components. This formulation captures the models of systems that are adaptively refined to account for their varied structure, such as sites of a heterogenous distributed computing infrastructure. The components can be disrupted by cyber of physical means, and can also be suitably reinforced to survive the attacks. We characterize the disruptions at each level of recursion using aggregate failure correlation functions that specify the conditional failure probability of RSoS given themore »« less
DOI: 10.23919/ICIF.2018.8455421

Full Text Available

Similar Records