An authenticated key exchange scheme for efficient security-aware scheduling of scientific applications in cloud computing

Liu, C; Zhang, X; Chen, J; Yang, C

An authenticated key exchange scheme for efficient security-aware scheduling of scientific applications in cloud computing

Liu, C Zhang, X Chen, J Yang, C

Permalink

Publication Type:: Conference Proceeding
Citation:: Proceedings - IEEE 9th International Conference on Dependable, Autonomic and Secure Computing, DASC 2011, 2011, pp. 372 - 379
Issue Date:: 2011-12-01

Closed Access

	Filename	Description	Size
	2012001288OK.pdf		914.97 kB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Liu, C	en_US
dc.contributor.author	Zhang, X	en_US
dc.contributor.author	Chen, J	en_US
dc.contributor.author	Yang, C	en_US
dc.date.issued	2011-12-01	en_US
dc.identifier.citation	Proceedings - IEEE 9th International Conference on Dependable, Autonomic and Secure Computing, DASC 2011, 2011, pp. 372 - 379	en_US
dc.identifier.isbn	9780769546124	en_US
dc.identifier.uri	http://hdl.handle.net/10453/26314
dc.description.abstract	Instead of purchasing and maintaining their own computing infrastructure, scientists can now run data-intensive scientific applications in cloud computing environment by facilitating its vast storage and computation capabilities. During the scheduling of such scientific applications for execution, various computation data flows will happen between the controller and computing server instances. Amongst various quality-of-service (QoS) metrics, data security is one of the greatest concerns to scientists because their data may be intercepted or stolen by malicious parties during those data flows. An existing typical method for addressing this issue is to apply Internet Key Exchange (IKE) scheme to generate and exchange session keys, and then to apply these keys for performing symmetric-key encryption which will encrypt those data flows. However, the IKE scheme suffers from low efficiency due to its low performance of asymmetric-key crypto logical operations over a large amount of data and high-density operations which are exactly the characteristics of scientific applications. In this paper, we propose Cloud Computing Background Key Exchange (CCBKE), a novel authenticated key exchange scheme that aims at efficient security-aware scheduling of scientific applications. Our scheme is designed based on randomness-reuse strategy and Internet Key Exchange (IKE) scheme. Theoretical analyses and simulation results demonstrate that, compared with the IKE scheme, our CCBKE scheme can significantly improve the efficiency by dramatically reducing time consumption and computation load without sacrificing the level of security. © 2011 IEEE.	en_US
dc.relation	http://purl.org/au-research/grants/arc/LP0990393
dc.relation.ispartof	Proceedings - IEEE 9th International Conference on Dependable, Autonomic and Secure Computing, DASC 2011	en_US
dc.relation.isbasedon	10.1109/DASC.2011.79	en_US
dc.title	An authenticated key exchange scheme for efficient security-aware scheduling of scientific applications in cloud computing	en_US
dc.type	Conference Proceeding
utslib.for	0805 Distributed Computing	en_US
dc.location.activity	Sydney, Australia	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
pubs.organisational-group	/University of Technology Sydney/Faculty of Science
pubs.organisational-group	/University of Technology Sydney/Faculty of Science/School of Mathematical and Physical Sciences
pubs.organisational-group	/University of Technology Sydney/Strength - GBDTC - Global Big Data Technologies
pubs.organisational-group	/University of Technology Sydney/Strength - INEXT - Innovation in IT Services and Applications
pubs.organisational-group	/University of Technology Sydney/Students
utslib.copyright.status	closed_access
pubs.publication-status	Published	en_US

Abstract:

Instead of purchasing and maintaining their own computing infrastructure, scientists can now run data-intensive scientific applications in cloud computing environment by facilitating its vast storage and computation capabilities. During the scheduling of such scientific applications for execution, various computation data flows will happen between the controller and computing server instances. Amongst various quality-of-service (QoS) metrics, data security is one of the greatest concerns to scientists because their data may be intercepted or stolen by malicious parties during those data flows. An existing typical method for addressing this issue is to apply Internet Key Exchange (IKE) scheme to generate and exchange session keys, and then to apply these keys for performing symmetric-key encryption which will encrypt those data flows. However, the IKE scheme suffers from low efficiency due to its low performance of asymmetric-key crypto logical operations over a large amount of data and high-density operations which are exactly the characteristics of scientific applications. In this paper, we propose Cloud Computing Background Key Exchange (CCBKE), a novel authenticated key exchange scheme that aims at efficient security-aware scheduling of scientific applications. Our scheme is designed based on randomness-reuse strategy and Internet Key Exchange (IKE) scheme. Theoretical analyses and simulation results demonstrate that, compared with the IKE scheme, our CCBKE scheme can significantly improve the efficiency by dramatically reducing time consumption and computation load without sacrificing the level of security. © 2011 IEEE.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/26314