Scalability of Cloud Based SCIT-MTD
Title | Scalability of Cloud Based SCIT-MTD |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Nguyen, Q. L., Sood, A. |
Conference Name | 2017 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C) |
Date Published | July 2017 |
Publisher | IEEE |
ISBN Number | 978-1-5386-2072-4 |
Keywords | attack surface, cloud, cloud based SCIT-MTD scalability, cloud computing, cloud infrastructure services, composability, Computer architecture, continuous rotation, cybersecurity protection, data protection, Internet, intrusion tolerance, load demand modeling, malicious intrusions, moving target defense, multinode system, multiple instance system, pubcrawl, quality attributes, Resiliency, Scalability, SCIT, security, security of data, self cleansing intrusion tolerance, Servers, share-nothing architecture pattern, Virtual machining, Web application |
Abstract | In order to support large volume of transactions and number of users, as estimated by the load demand modeling, a system needs to scale in order to continue to satisfy required quality attributes. In particular, for systems exposed to the Internet, scaling up may increase the attack surface susceptible to malicious intrusions. The new proactive approach based on the concept of Moving Target Defense (MTD) should be considered as a complement to current cybersecurity protection. In this paper, we analyze the scalability of the Self Cleansing Intrusion Tolerance (SCIT) MTD approach using Cloud infrastructure services. By applying the model of MTD with continuous rotation and diversity to a multi-node or multi-instance system, we argue that the effectiveness of the approach is dependent on the share-nothing architecture pattern of the large system. Furthermore, adding more resources to the MTD mechanism can compensate to achieve the desired level of secure availability. |
URL | https://ieeexplore.ieee.org/document/8004382 |
DOI | 10.1109/QRS-C.2017.103 |
Citation Key | nguyen_scalability_2017 |
- moving target defense
- Web application
- Virtual machining
- share-nothing architecture pattern
- Servers
- self cleansing intrusion tolerance
- security of data
- security
- SCIT
- Scalability
- Resiliency
- quality attributes
- pubcrawl
- multiple instance system
- multinode system
- attack surface
- malicious intrusions
- load demand modeling
- intrusion tolerance
- internet
- Data protection
- cybersecurity protection
- continuous rotation
- computer architecture
- composability
- cloud infrastructure services
- Cloud Computing
- cloud based SCIT-MTD scalability
- cloud