Method and device for finding malicious service provider of composite service in cloud system

A combined service and cloud system technology, applied in the field of computer security, can solve problems such as vulnerability to malicious attacks, unreal data processing, inability to accurately identify attackers, etc., and achieve the effect of restraining and limiting the scope of attack damage and suppressing partner attacks.
CN105915513BInactive Publication Date: 2019-01-04INNER MONGOLIA UNIVERSITY
5 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Patents(China)
Current Assignee / Owner
INNER MONGOLIA UNIVERSITY
Publication Date
2019-01-04
Estimated Expiration
Not applicable Β· inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention relates to a method and a device for searching a malicious service provider of a combined service in a cloud system. The method comprises the steps of inputting original data to a plurality of service providers with same function so that the plurality of service providers return data processing results; receiving the data processing results of the plurality of service providers, comparing the data processing results of the plurality of service providers, obtaining function consistency relationship and function inconsistency relationship of the plurality of service providers; and determining the malicious service provider according to the function consistency relationship and the function inconsistency relationship of the plurality of service providers. According to the method and the device provided by the embodiment of the invention, an attacker can be effectively disclosed, thereby finding the malicious service provider. Even a majority of malicious service providers exist, the attackers can be effectively determined. Furthermore coordinated attack can be restrained and attack damage range is restrained. Furthermore the method and the device do not require supporting of any specific hardware or security kernel. The method and the device has high practicability for the large cloud system.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the technical field of computer security, in particular to a method and device for searching malicious service providers of combined services in a cloud system. Background technique

[0002] Cloud computing has become a cost-effective resource leasing model, which eliminates the need for users to maintain complex physical computing infrastructure by themselves. Software-as-a-service (SaaS) cloud systems (for example, Amazon Web Services (AWS) and Google AppEngine) are built on the concepts of software as a service and service-oriented architecture (SOA), which enable application service providers to Computing infrastructure implements their applications. Our work mainly focuses on data stream processing services.

[0003] However, cloud computing infrastructure is often shared by service providers, which makes them vulnerable to malicious attacks. For example, an attacker can impersonate a legitimate service provider to prov...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More