【研究發展處訊】

資訊管理學系楊欣哲特聘教授發表最新期刊論文

Design Issues of the Side-Channel Attacks Protecting Scheme in Cloud Computing Environment

作者：Shin-Jer Yang* and Chia-Chi Yen (楊欣哲*，顏家麒)

Journal of Internet Technology (SCI)

卷數：21 

期數：3

頁碼：713-721

出版：May 2020

摘要：

The computing resources can be utilized and shared with other VMs on the same physical machine, thus there exists information security in cloud computing. Cloud services such as IaaS, PaaS and SaaS can employ the multi-tenancy control to accomplish the applications independence and data isolation for different tenants. The SCA attacker can break into the shared computing resources and steal stored data of other users on the physical machine, which results in data leakage and theft. Therefore, we examine and fix the security issues of current CP-SCA to propose new CRDPS scheme for enhancing defense capability of SCA.

The CRDPS can monitor the ICMP and TCP SYN packets to determine whether the sender is a SCA attacker. Then, we perform some simulations using UNB CIC Dataset to analyze and compare the CRDPS and CP-SCA schemes in terms of four KPIs. Finally, the simulation results indicate that the CRDPS has a better detection rate, higher accuracy ratio, and system throughput than the CP-SCA about 8.51%, 41.36%, and 251 packets respectively, but there is a 4.28% overhead in average processing time. Consequently, the proposed CRDPS can accurately identify the attackers to harden the security and enhance the total quality in cloud services, especially in SaaS.

Keywords— Cloud Computing; Side-Channel Attacks; ICMP; TCP SYN; Co-Residency Detection

研究事務組小提醒：教師如有最新發表於AHCI、SSCI、SCI、EI、TSSCI、THCI、「東吳大學外語學門獎勵名單」之期刊論文，歡迎將相關資訊e-mail至rad@scu.edu.tw，研究發展處將會公告於校園頭條，以廣交流。

【文圖/研究事務組游晴如組員】