EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Optimized security-aware VM placement for enhanced intrusion tolerance and resilience in IaaS clouds using MILP

Mahmoud Aljawarneh (), Qais Al-Na’amneh, Rahaf Hazaymih (), Ayoub Alsarhan (), Khalid Hamad Alnafisah (), Nayef H. Alshammari () and Sami Aziz Alshammari ()

International Journal of Innovative Research and Scientific Studies, 2025, vol. 8, issue 5, 218-234

Abstract: Infrastructure-as-a-Service (IaaS) clouds offer unparalleled flexibility but introduce complex security challenges, particularly concerning Virtual Machine (VM) placement. Security-oblivious VM allocation can lead to catastrophic failures if a physical server is compromised, as all co-resident VMs become vulnerable, diminishing service resilience and escalating the potential damage (blast radius). This research proposes a novel, user-driven framework for security-aware VM placement that leverages Mixed Integer Linear Programming (MILP) to enhance intrusion tolerance and service resilience while managing operational costs. The framework allows administrators to define granular security policies, including VM criticality, service compositions, mandatory VM separation, service diversity requirements, and anti-affinity rules. These policies are integrated into the MILP model alongside traditional objectives like energy, latency, and provisioning cost minimization, governed by user-configurable weights. Through comprehensive simulations based on 60 VMs and 20 servers for weight analysis, and scaling up to 120 VMs for performance evaluation, we demonstrate the framework’s ability to significantly reduce security risks, such as minimizing the potential blast radius and ensuring service component dispersion. For instance, increasing criticality weight (Wcrit) from 0 to 2.0 reduced the maximum blast radius from 20-22 to 13-15, though with an increase in the security-focused objective value. Ten comparative analyses illustrate the impact of various security postures on overall system performance and cost.

Keywords: Cloud security; IaaS; Intrusion tolerance; Mixed integer linear programming (MILP); Resilience; Resource allocation; Security-aware optimization; VM placement. (search for similar items in EconPapers)
Date: 2025
References: Add references at CitEc
Citations:

Downloads: (external link)
https://ijirss.com/index.php/ijirss/article/view/8601/1944 (application/pdf)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:aac:ijirss:v:8:y:2025:i:5:p:218-234:id:8601

Access Statistics for this article

International Journal of Innovative Research and Scientific Studies is currently edited by Natalie Jean

More articles in International Journal of Innovative Research and Scientific Studies from Innovative Research Publishing
Bibliographic data for series maintained by Natalie Jean ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-07-18
Handle: RePEc:aac:ijirss:v:8:y:2025:i:5:p:218-234:id:8601