A mechanism that bounds execution performance for process group for mitigating CPU abuse

Toshihiro Yamauchi; Takayuki Hara; Hideo Taniguchi

doi:10.1007/978-3-642-17610-4_10

A mechanism that bounds execution performance for process group for mitigating CPU abuse

Toshihiro Yamauchi, Takayuki Hara, Hideo Taniguchi

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

Original language	English
Title of host publication	Communications in Computer and Information Science
Pages	84-93
Number of pages	10
Volume	122 CCIS
DOIs	https://doi.org/10.1007/978-3-642-17610-4_10
Publication status	Published - 2010
Event	2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010 - Jeju Island, Korea, Republic of Duration: Dec 13 2010 → Dec 15 2010

Publication series

Name	Communications in Computer and Information Science
Volume	122 CCIS
ISSN (Print)	18650929

Other

Other	2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010
Country	Korea, Republic of
City	Jeju Island
Period	12/13/10 → 12/15/10

Fingerprint

Program processors

Access control

Keywords

anti-DoS technique
execution resource
operating system
Process scheduling

ASJC Scopus subject areas

Computer Science(all)

Cite this

Yamauchi, T., Hara, T., & Taniguchi, H. (2010). A mechanism that bounds execution performance for process group for mitigating CPU abuse. In Communications in Computer and Information Science (Vol. 122 CCIS, pp. 84-93). (Communications in Computer and Information Science; Vol. 122 CCIS). https://doi.org/10.1007/978-3-642-17610-4_10

A mechanism that bounds execution performance for process group for mitigating CPU abuse. / Yamauchi, Toshihiro; Hara, Takayuki; Taniguchi, Hideo.

Communications in Computer and Information Science. Vol. 122 CCIS 2010. p. 84-93 (Communications in Computer and Information Science; Vol. 122 CCIS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Yamauchi, T, Hara, T & Taniguchi, H 2010, A mechanism that bounds execution performance for process group for mitigating CPU abuse. in Communications in Computer and Information Science. vol. 122 CCIS, Communications in Computer and Information Science, vol. 122 CCIS, pp. 84-93, 2010 International Conferences on Security Technology, SecTech 2010 and Disaster Recovery and Business Continuity, DRBC 2010, Held as Part of the 2nd International Mega-Conference on Future Generation Information Technology, FGIT 2010, Jeju Island, Korea, Republic of, 12/13/10. https://doi.org/10.1007/978-3-642-17610-4_10

Yamauchi T, Hara T, Taniguchi H. A mechanism that bounds execution performance for process group for mitigating CPU abuse. In Communications in Computer and Information Science. Vol. 122 CCIS. 2010. p. 84-93. (Communications in Computer and Information Science). https://doi.org/10.1007/978-3-642-17610-4_10

Yamauchi, Toshihiro ; Hara, Takayuki ; Taniguchi, Hideo. / A mechanism that bounds execution performance for process group for mitigating CPU abuse. Communications in Computer and Information Science. Vol. 122 CCIS 2010. pp. 84-93 (Communications in Computer and Information Science).

@inproceedings{f919361f9ef947f3884898a928ba9cc3,

title = "A mechanism that bounds execution performance for process group for mitigating CPU abuse",

abstract = "Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.",

keywords = "anti-DoS technique, execution resource, operating system, Process scheduling",

author = "Toshihiro Yamauchi and Takayuki Hara and Hideo Taniguchi",

year = "2010",

doi = "10.1007/978-3-642-17610-4_10",

language = "English",

isbn = "3642176097",

volume = "122 CCIS",

series = "Communications in Computer and Information Science",

pages = "84--93",

booktitle = "Communications in Computer and Information Science",

}

TY - GEN

T1 - A mechanism that bounds execution performance for process group for mitigating CPU abuse

AU - Yamauchi, Toshihiro

AU - Hara, Takayuki

AU - Taniguchi, Hideo

PY - 2010

Y1 - 2010

N2 - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

AB - Secure OS has been the focus of several studies. However, CPU resources, which are important resources for executing a program, are not the object of access control. For preventing the abuse of CPU resources, we had earlier proposed a new type of execution resource that controls the maximum CPU usage [5,6] The previously proposed mechanism can control only one process at a time. Because most services involve multiple processes, the mechanism should control all the processes in each service. In this paper, we propose an improved mechanism that helps to achieve a bound on the execution performance of a process group, in order to limit unnecessary processor usage. We report the results of an evaluation of our proposed mechanism.

KW - anti-DoS technique

KW - execution resource

KW - operating system

KW - Process scheduling

UR - http://www.scopus.com/inward/record.url?scp=78650792678&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=78650792678&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-17610-4_10

DO - 10.1007/978-3-642-17610-4_10

M3 - Conference contribution

AN - SCOPUS:78650792678

SN - 3642176097

SN - 9783642176098

VL - 122 CCIS

T3 - Communications in Computer and Information Science

SP - 84

EP - 93

BT - Communications in Computer and Information Science

ER -

Access to Document

10.1007/978-3-642-17610-4_10