A Defense Mechanism To Resist Co-Resident Attack Based On User Classification In Cloud Computing Environment

Cloud computing is a convenient,on-demand network access technology for using shared computer resources.Users in the cloud run their own virtual machines on the same physical server through virtualization technology without feeling the existence of other users.With the rapid development of cloud computing,many security problems in the cloud are gradually exposed.Among them,co-resident attack is an important security threat in the cloud.Co-resident attackers take advantage of the fact that different user virtual machines in the cloud may be located on the same physical server to steal and tamper with the target user's information by establishing a side channel,or destroy the target user's information.Task execution seriously affects network security in the cloud.In previous studies,researchers proposed lots of solutions,but these solutions often have problems such as high overhead and unfavorable deployment.Aiming at the co-resident attack problem,the thesis proposes a co-resident attack defense mechanism based on user classification to mitigate co-resident attacks in the cloud.The main work of this paper includes the following aspects:Firstly,the thesis designs a co-resident attack defense mechanism based on user classification.The mechanism analyzes user behavior characteristics,divides users with different behavior characteristics in the cloud into different risk states,and places users with the same risk state in the same risk state.In the risk partition,physical isolation between users is realized.Secondly,the thesis completes experiments on defense mechanisms on real commercial cloud platform datasets.After analyzing the user data in the real cloud platform,it is very consistent with the basis for distinguishing users in the defense mechanism of the thesis,and gets the experimental results of user classification.Finally,based on the game theory method,the co-resident attack scenario under the defense mechanism of this paper is modeled,and a two-player security game problem model is established.And the best defense strategy is given through experiments,and it is also proved that the defense mechanism in this thesis could effectively alleviate the harm of co-resident attacks.