Computation-at-risk: assessing job portfolio management risk on clusters

Kleban, S.D.; Clearwater, Scott H.

doi:10.1109/ipdps.2004.1303319

Cited by 11 publications

(4 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The success of Value-at-Risk in financial community has inspired many researches in applying it to the risk management of computer and networking systems [8][9] . But the community has not yet laid out the evaluation of the DoS vulnerability in security protocols.…”

Section: Motivationmentioning

confidence: 99%

“…Although proposed in financial community, VaR is not a new comer for computer scientists and engineers. Kleban and Clearwater did the first job employing the idea of VaR to evaluate the risk of computer systems [8][9] , however, little effort has been made to apply VaR to the risk evaluation of security protocols since then. Value-at-Risk has a solid mathematical foundation and has achieved a great success in financial risk evaluation.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Towards Risk Evaluation of Denial-of-Service Vulnerabilities in Security Protocols

Cao

Guan

Chen

et al. 2010

J. Comput. Sci. Technol.

View full text Add to dashboard Cite

Cao Z, Guan Z, Chen Z et al. Towards risk evaluation of denial-of-service vulnerabilities in security protocols. JOURNAL OF COMPUTER SCIENCE AND TECHNOLOGY 25(2): 375-inside back cover Abstract Denial-of-Service (DoS) attacks are virulent to both computer and networked systems. Modeling and evaluating DoS attacks are very important issues to networked systems; they provide both mathematical foundations and theoretic guidelines to security system design. As defense against DoS has been built more and more into security protocols, this paper studies how to evaluate the risk of DoS in security protocols. First, we build a formal framework to model protocol operations and attacker capabilities. Then we propose an economic model for the risk evaluation. By characterizing the intruder capability with a probability model, our risk evaluation model specifies the "Value-at-Risk" (VaR) for the security protocols. The "Value-at-Risk" represents how much computing resources are expected to lose with a given level of confidence. The proposed model can help users to have a better understanding of the protocols they are using, and in the meantime help designers to examine their designs and get clues of improvement. Finally we apply the proposed model to analyze a key agreement protocol used in sensor networks and identify a DoS flaw there, and we also validate the applicability and effectiveness of our risk evaluation model by applying it to analyze and compare two public key authentication protocols.

show abstract

Section: Motivationmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Towards Risk Evaluation of Denial-of-Service Vulnerabilities in Security Protocols

Cao

Guan

Chen

et al. 2010

J. Comput. Sci. Technol.

View full text Add to dashboard Cite

show abstract

“…Various other works [12,15,16,22] have addressed some form of risk in computing jobs. In [12] and [22], the risk of paying penalties to compensate users is minimized so as not to reduce the profit of service providers.…”

Section: Related Workmentioning

confidence: 99%

“…In [12] and [22], the risk of paying penalties to compensate users is minimized so as not to reduce the profit of service providers. Computation-atRisk [15,16] determines the risk of completing jobs later than expected based on either the makespan (response time) or the expansion factor (slowdown). GridIS [31] shows that a conservative provider earns much less profit due to accepting too few jobs to run, as compared to an aggressive provider who earn more profit even though more jobs result in deadline violations.…”

Section: Related Workmentioning

confidence: 99%

Integrated Risk Analysis for a Commercial Computing Service in Utility Computing

Yeo

Buyya

2008

J Grid Computing

View full text Add to dashboard Cite

Recent technological advances in Grid computing enable the virtualization and dynamic delivery of computing services on demand to realize utility computing. In utility computing, computing services will always be available to the users whenever the need arises, similar to the availability of real-world utilities, such as electrical power, gas, and water. With this new outsourcing service model, users are able to define their service needs through Service Level Agreements (SLAs) and only have to pay when they use the services. They do not have to invest on or maintain computing infrastructures themselves and are not constrained to specific computing service providers. Thus, a commercial computing service will face two new challenges: (i) what are the objectives or goals it needs to achieve in order to support the utility computing model, and (ii) how to evaluate whether these objectives are achieved or not. To address these two new challenges, this paper first identifies four essential objectives that are required to support the utility computing model: (i) manage wait time for SLA acceptance, (ii) meet SLA requests, (iii) ensure reliability of accepted SLA, and (iv) attain profitability. It then describes two evaluation methods that are simple and intuitive: (i) separate and (ii) integrated risk analysis to analyze the effectiveness of resource management policies in achieving the objectives. Evaluation results based on simulation successfully demonstrate the applicability of separate and integrated risk analysis to assess policies in terms of the objectives. These evaluation results which constitute an a posteriori risk analysis of policies can later be used to generate an a priori risk analysis of policies by identifying possible risks for future utility computing situations.

show abstract

An Economical Model for the Risk Evaluation of DoS Vulnerabilities in Cryptography Protocols

Cao

Guan

Chen

et al.

Information Security Practice and Experience

View full text Add to dashboard Cite

Computation-at-risk: assessing job portfolio management risk on clusters

Cited by 11 publications

References 5 publications

Towards Risk Evaluation of Denial-of-Service Vulnerabilities in Security Protocols

Towards Risk Evaluation of Denial-of-Service Vulnerabilities in Security Protocols

Integrated Risk Analysis for a Commercial Computing Service in Utility Computing

An Economical Model for the Risk Evaluation of DoS Vulnerabilities in Cryptography Protocols

Contact Info

Product

Resources

About