TY - GEN
T1 - A mechanism that bounds execution performance for process group for mitigating CPU abuse
AU - Yamauchi, Toshihiro
AU - Hara, Takayuki
AU - Taniguchi, Hideo
PY - 2010/12/1
Y1 - 2010/12/1
N2 - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.
AB - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.
KW - Process scheduling
KW - anti-DoS technique
KW - execution resource
KW - operating system
UR - http://www.scopus.com/inward/record.url?scp=78650792678&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=78650792678&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-17610-4_10
DO - 10.1007/978-3-642-17610-4_10
M3 - Conference contribution
AN - SCOPUS:78650792678
SN - 3642176097
SN - 9783642176098
T3 - Communications in Computer and Information Science
SP - 84
EP - 93
BT - Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010
T2 - 2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010
Y2 - 13 December 2010 through 15 December 2010
ER -