On verifying stateful dataflow processing services in large-scale cloud systems

Juan Du; Xiaohui Gu; Ting Yu

doi:10.1145/1866307.1866393

On verifying stateful dataflow processing services in large-scale cloud systems

Juan Du^*
, Xiaohui Gu
, Ting Yu

^*Corresponding author for this work

North Carolina State University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

11 Citations (Scopus)

Abstract

Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

Original language	English
Title of host publication	CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security
Pages	672-674
Number of pages	3
DOIs	https://doi.org/10.1145/1866307.1866393
Publication status	Published - 2010
Externally published	Yes
Event	17th ACM Conference on Computer and Communications Security, CCS'10 - Chicago, IL, United States Duration: 4 Oct 2010 → 8 Oct 2010

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	17th ACM Conference on Computer and Communications Security, CCS'10
Country/Territory	United States
City	Chicago, IL
Period	4/10/10 → 8/10/10

Access to Document

10.1145/1866307.1866393

Cite this

@inproceedings{9e06d09c305344dd987c30b793bccea3,

title = "On verifying stateful dataflow processing services in large-scale cloud systems",

abstract = "Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.",

author = "Juan Du and Xiaohui Gu and Ting Yu",

year = "2010",

doi = "10.1145/1866307.1866393",

language = "English",

isbn = "9781450302449",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "672--674",

booktitle = "CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security",

note = "17th ACM Conference on Computer and Communications Security, CCS'10 ; Conference date: 04-10-2010 Through 08-10-2010",

}

Du, J, Gu, X & Yu, T 2010, On verifying stateful dataflow processing services in large-scale cloud systems. in CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, pp. 672-674, 17th ACM Conference on Computer and Communications Security, CCS'10, Chicago, IL, United States, 4/10/10. https://doi.org/10.1145/1866307.1866393

On verifying stateful dataflow processing services in large-scale cloud systems. / Du, Juan; Gu, Xiaohui; Yu, Ting.
CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security. 2010. p. 672-674 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - On verifying stateful dataflow processing services in large-scale cloud systems

AU - Du, Juan

AU - Gu, Xiaohui

AU - Yu, Ting

PY - 2010

Y1 - 2010

N2 - Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

AB - Cloud computing needs to provide integrity assurance in order to support security sensitive application services such as critical dataflow processing. In this paper, we present a novel RObust Service Integrity Attestation (ROSIA) framework that can efficiently verify the integrity of stateful dataflow processing services and pinpoint malicious service providers within a large-scale cloud system. ROSIA achieves robustness by supporting stateful dataflow services such as windowed stream operators, and performing integrated consistency check to detect colluding attacks. We have implemented ROSIA on top of the IBM System S dataflow processing system and tested it on the NCSU virtual computing lab. Our experimental results show that our scheme is feasible and efficient for large-scale cloud systems.

UR - https://www.scopus.com/pages/publications/78650003017

U2 - 10.1145/1866307.1866393

DO - 10.1145/1866307.1866393

M3 - Conference contribution

AN - SCOPUS:78650003017

SN - 9781450302449

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 672

EP - 674

BT - CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security

T2 - 17th ACM Conference on Computer and Communications Security, CCS'10

Y2 - 4 October 2010 through 8 October 2010

ER -

On verifying stateful dataflow processing services in large-scale cloud systems

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this