A mechanism that bounds execution performance for process group for mitigating CPU abuse

Toshihiro Yamauchi; Takayuki Hara; Hideo Taniguchi

doi:10.1007/978-3-642-17610-4_10

A mechanism that bounds execution performance for process group for mitigating CPU abuse

Toshihiro Yamauchi, Takayuki Hara, Hideo Taniguchi

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

Original language	English
Title of host publication	Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010
Pages	84-93
Number of pages	10
DOIs	https://doi.org/10.1007/978-3-642-17610-4_10
Publication status	Published - Dec 1 2010
Event	2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010 - Jeju Island, Korea, Republic of Duration: Dec 13 2010 → Dec 15 2010

Publication series

Name	Communications in Computer and Information Science
Volume	122 CCIS
ISSN (Print)	1865-0929

Other

Other	2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010
Country	Korea, Republic of
City	Jeju Island
Period	12/13/10 → 12/15/10

Fingerprint

Keywords

Process scheduling
anti-DoS technique
execution resource
operating system

ASJC Scopus subject areas

Computer Science(all)
Mathematics(all)

Cite this

Yamauchi, T., Hara, T., & Taniguchi, H. (2010). A mechanism that bounds execution performance for process group for mitigating CPU abuse. In Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010 (pp. 84-93). (Communications in Computer and Information Science; Vol. 122 CCIS). https://doi.org/10.1007/978-3-642-17610-4_10

A mechanism that bounds execution performance for process group for mitigating CPU abuse. / Yamauchi, Toshihiro; Hara, Takayuki; Taniguchi, Hideo.

Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010. 2010. p. 84-93 (Communications in Computer and Information Science; Vol. 122 CCIS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Yamauchi, T, Hara, T & Taniguchi, H 2010, A mechanism that bounds execution performance for process group for mitigating CPU abuse. in Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010. Communications in Computer and Information Science, vol. 122 CCIS, pp. 84-93, 2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010, Jeju Island, Korea, Republic of, 12/13/10. https://doi.org/10.1007/978-3-642-17610-4_10

Yamauchi T, Hara T, Taniguchi H. A mechanism that bounds execution performance for process group for mitigating CPU abuse. In Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010. 2010. p. 84-93. (Communications in Computer and Information Science). https://doi.org/10.1007/978-3-642-17610-4_10

Yamauchi, Toshihiro ; Hara, Takayuki ; Taniguchi, Hideo. / A mechanism that bounds execution performance for process group for mitigating CPU abuse. Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010. 2010. pp. 84-93 (Communications in Computer and Information Science).

@inproceedings{f919361f9ef947f3884898a928ba9cc3,

title = "A mechanism that bounds execution performance for process group for mitigating CPU abuse",

abstract = "Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.",

keywords = "Process scheduling, anti-DoS technique, execution resource, operating system",

author = "Toshihiro Yamauchi and Takayuki Hara and Hideo Taniguchi",

year = "2010",

month = dec

day = "1",

doi = "10.1007/978-3-642-17610-4_10",

language = "English",

isbn = "3642176097",

series = "Communications in Computer and Information Science",

pages = "84--93",

booktitle = "Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010",

note = "2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010 ; Conference date: 13-12-2010 Through 15-12-2010",

}

TY - GEN

T1 - A mechanism that bounds execution performance for process group for mitigating CPU abuse

AU - Yamauchi, Toshihiro

AU - Hara, Takayuki

AU - Taniguchi, Hideo

PY - 2010/12/1

Y1 - 2010/12/1

N2 - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

AB - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

KW - Process scheduling

KW - anti-DoS technique

KW - execution resource

KW - operating system

UR - http://www.scopus.com/inward/record.url?scp=78650792678&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=78650792678&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-17610-4_10

DO - 10.1007/978-3-642-17610-4_10

M3 - Conference contribution

AN - SCOPUS:78650792678

SN - 3642176097

SN - 9783642176098

T3 - Communications in Computer and Information Science

SP - 84

EP - 93

BT - Security Technology, Disaster Recovery and Business Continuity - International Conferences, SecTech and DRBC 2010, Held as Part of the Future Generation Information Technology Conference, FGIT 2010

T2 - 2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010

Y2 - 13 December 2010 through 15 December 2010

ER -

Access to Document

10.1007/978-3-642-17610-4_10