On verifying stateful dataflow processing services in large-scale cloud systems

Juan Du, Xiaohui Gu, Ting Yu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Citations (Scopus)

Abstract

Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

Original languageEnglish
Title of host publicationProceedings of the ACM Conference on Computer and Communications Security
Pages672-674
Number of pages3
DOIs
Publication statusPublished - 16 Dec 2010
Externally publishedYes
Event17th ACM Conference on Computer and Communications Security, CCS'10 - Chicago, IL, United States
Duration: 4 Oct 20108 Oct 2010

Other

Other17th ACM Conference on Computer and Communications Security, CCS'10
CountryUnited States
CityChicago, IL
Period4/10/108/10/10

Fingerprint

Processing
Cloud computing

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Du, J., Gu, X., & Yu, T. (2010). On verifying stateful dataflow processing services in large-scale cloud systems. In Proceedings of the ACM Conference on Computer and Communications Security (pp. 672-674) https://doi.org/10.1145/1866307.1866393

On verifying stateful dataflow processing services in large-scale cloud systems. / Du, Juan; Gu, Xiaohui; Yu, Ting.

Proceedings of the ACM Conference on Computer and Communications Security. 2010. p. 672-674.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Du, J, Gu, X & Yu, T 2010, On verifying stateful dataflow processing services in large-scale cloud systems. in Proceedings of the ACM Conference on Computer and Communications Security. pp. 672-674, 17th ACM Conference on Computer and Communications Security, CCS'10, Chicago, IL, United States, 4/10/10. https://doi.org/10.1145/1866307.1866393
Du J, Gu X, Yu T. On verifying stateful dataflow processing services in large-scale cloud systems. In Proceedings of the ACM Conference on Computer and Communications Security. 2010. p. 672-674 https://doi.org/10.1145/1866307.1866393
Du, Juan ; Gu, Xiaohui ; Yu, Ting. / On verifying stateful dataflow processing services in large-scale cloud systems. Proceedings of the ACM Conference on Computer and Communications Security. 2010. pp. 672-674
@inproceedings{c6fb6730172244b1b47ab9c41bc974b5,
title = "On verifying stateful dataflow processing services in large-scale cloud systems",
abstract = "Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.",
author = "Juan Du and Xiaohui Gu and Ting Yu",
year = "2010",
month = "12",
day = "16",
doi = "10.1145/1866307.1866393",
language = "English",
isbn = "9781450302449",
pages = "672--674",
booktitle = "Proceedings of the ACM Conference on Computer and Communications Security",

}

TY - GEN

T1 - On verifying stateful dataflow processing services in large-scale cloud systems

AU - Du, Juan

AU - Gu, Xiaohui

AU - Yu, Ting

PY - 2010/12/16

Y1 - 2010/12/16

N2 - Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

AB - Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

UR - http://www.scopus.com/inward/record.url?scp=78650003017&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=78650003017&partnerID=8YFLogxK

U2 - 10.1145/1866307.1866393

DO - 10.1145/1866307.1866393

M3 - Conference contribution

SN - 9781450302449

SP - 672

EP - 674

BT - Proceedings of the ACM Conference on Computer and Communications Security

ER -