Research On Mitigating Co-resident Attacks In Cloud Environment

Cloud computing provides users with a variety of computing and storage resources in an on-demand and easily scalable manner through the network,which greatly reduces the user's computing and storage burden,but it also brings a series of new security issues.Co-resident attacks are one of the most harmful attacks in the cloud environment.Most of the existing defense strategies are through the transformation of the cloud platform hardware or the installation of specific software,and these strategies require huge costs from the cloud service provider and are not conducive to Deploy in a timely manner.In order to mitigate the harm of co-resident attacks,this article provides different solutions from the perspective of cloud service providers and tenants.From the perspective of a cloud service provider.Most of the existing strategies to mitigate the harm of co-resident attacks require the transformation of existing cloud platforms,which is not conducive to timely deployment.For this reason,some scholars have proposed to reduce the harm of co-resident attacks by designing a secure virtual machine placement strategy.The main idea is to reduce the coexistence probability of an attacker and its target through a secure virtual machine placement strategy,thereby reducing the harm of coexistence attacks.A virtual machine placement strategy based on Shamir is proposed.By limiting the number of co-residents between users,the security of user data is improved;through multi-objective optimization,while improving data security,the load balancing ability of the cloud environment is improved,and resource waste is reduced;critical data security is guaranteed through the blockchain To improve the security of the proposed solution.From the perspective of cloud tenants.The user data is divided into blocks and a copy is created,so that the data security and data survivability are guaranteed to some extent.However,the existing schemes for data block backup cannot simultaneously improve the datasecurity and data survivability,and it is also easy.Based on this,a huge storage overhead is brought to users.Based on this,a data block encryption backup scheme that resists co-resident attacks with low storage overhead is proposed.The backup data is generated by XOR operation,which can be used for data backup and data recovery.It solves the problem of a lot of overhead caused by using multiple data backups;at the same time,the XOR backup also solves the problem that the original solution cannot improve data security and data survivability at the same time.