A First Look at Power Attacks in Multi-Tenant Data Centers
- Creators
- Islam, Mohammad A.
- Ren, Shaolei
- Wierman, Adam
Abstract
Oversubscription increases the utilization of expensive power infrastructure in multi-tenant data centers, but it can create dangerous emergencies and outages if the designed power capacity is exceeded. Despite the safeguards in place today to prevent power outages, this extended abstract demonstrates that multi-tenant data centers are vulnerable to well-timed power attacks launched by a malicious tenant (i.e., attacker). Further, we show that there is a physical side channel -- a thermal side channel due to hot air recirculation -- that contains information about the benign tenants' runtime power usage. We develop a state-augmented Kalman filter that guides an attacker to precisely time its power attacks at moments that coincide with the benign tenants' high power demand, thus overloading the designed power capacity. Our experimental results show that an attacker can capture 53% of all attack opportunities, significantly compromising the data center availability.
Additional Information
Copyright is held by author/owner(s). This work was supported in part by the U.S. NSF under grants CNS-1551661, CNS-1565474, and ECCS-1610471.Additional details
- Eprint ID
- 85707
- DOI
- 10.1145/3152042.3152070
- Resolver ID
- CaltechAUTHORS:20180409-162520179
- NSF
- CNS-1551661
- NSF
- CNS-1565474
- NSF
- ECCS-1610471
- Created
-
2018-04-10Created from EPrint's datestamp field
- Updated
-
2021-11-15Created from EPrint's last_modified field