| Title | Game Theoretic-Based Approaches for Cybersecurity-Aware Virtual Machine Placement in Public Cloud Clusters |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Homsi, Soamar, Quan, Gang, Wen, Wujie, Chapparo-Baquero, Gustavo A., Njilla, Laurent |
| Conference Name | 2019 19th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGRID) |
| Keywords | cloud computing, cybersecurity, cybersecurity loss awareness, cybersecurity-aware consolidation algorithms, cybersecurity-aware virtual machine placement, equilibrium allocation strategies, game model, game theoretic security, game theoretic-based approaches, game theory, human factors, large-scale cloud data centers, mathematical programming, mathematical programming approach, multidimensional bin packing approaches, operating expense, Predictive Metrics, pubcrawl, public cloud clusters, resource allocation, resource utilization, Scalability, security of data, static VM allocation, two-player zero-sum game, virtual machines, VM-to-VM cybersecurity interdependency risks |
| Abstract | Allocating several Virtual Machines (VMs) onto a single server helps to increase cloud computing resource utilization and to reduce its operating expense. However, multiplexing VMs with different security levels on a single server gives rise to major VM-to-VM cybersecurity interdependency risks. In this paper, we address the problem of the static VM allocation with cybersecurity loss awareness by modeling it as a two-player zero-sum game between an attacker and a provider. We first obtain optimal solutions by employing the mathematical programming approach. We then seek to find the optimal solutions by quickly identifying the equilibrium allocation strategies in our formulated zero-sum game. We mean by "equilibrium" that none of the provider nor the attacker has any incentive to deviate from one's chosen strategy. Specifically, we study the characteristics of the game model, based on which, to develop effective and efficient allocation algorithms. Simulation results show that our proposed cybersecurity-aware consolidation algorithms can significantly outperform the commonly used multi-dimensional bin packing approaches for large-scale cloud data centers. |
| DOI | 10.1109/CCGRID.2019.00041 |
| Citation Key | homsi_game_2019 |
Game Theoretic-Based Approaches for Cybersecurity-Aware Virtual Machine Placement in Public Cloud Clusters