Rethinking Business Model in Cloud Computing: Concept and Example

Ping DU  Akihiro NAKAO  

IEICE TRANSACTIONS on Information and Systems   Vol.E94-D   No.11   pp.2119-2128
Publication Date: 2011/11/01
Online ISSN: 1745-1361
DOI: 10.1587/transinf.E94.D.2119
Print ISSN: 0916-8532
Type of Manuscript: Special Section PAPER (Special Section on Information and Communication System Security)
cloud computing,  denial-of-quota attacks,  pay-as-you-admit,  

Full Text: PDF(595.4KB)>>
Buy this Article

In cloud computing, a cloud user pays proportionally to the amount of the consumed resources (bandwidth, memory, and CPU cycles etc.). We posit that such a cloud computing system is vulnerable to DDoS (Distributed Denial-of-Service) attacks against quota. Attackers can force a cloud user to pay more and more money by exhausting its quota without crippling its execution system or congesting links. In this paper, we address this issue and claim that cloud should enable users to pay only for their admitted traffic. We design and prototype such a charging model in a CoreLab testbed infrastructure and show an example application.