The recent trends of Distributed Denial of Service (DDoS) attacks in cloud computing have revealed a new menace of DDoS attacks called collateral damages on non-target stakeholders. These stakeholders are victim Virtual Machine (VM), sibling VMs, host physical machine, other host physical machines, VMs on other host machine, users of attacked and co-hosted VMs, cloud providers and cloud customer. The main reason behind these collateral damages are the features of cloud like virtualization, auto-scaling, resource sharing, and migrations. During the DDoS attacks due to the massive number of requests, it will result in host overload situation. In cloud, this overload situation is handled by various existing migration policies. These simple migration policies are not efficient if the attacked VMs are present in the cloud network. Therefore a supporting framework, Attacked VM Detection and Recovery (AVDR) is proposed in this work. Proposed AVDR framework improves the performance of existing migration policies and reduces the collateral damages. The AVDR framework is based on attack strength ‘\(Y_{as}\)’, thus a linear model to evaluate ‘\(Y_{as}\)’ is also proposed. The dataset used for the modeling of ‘\(Y_{as}\)’ is generated over the VM instances created on AWS. It consists of both the attack as well as benign request traces. The results prove the effectiveness of the proposed work.

云计算中的分布式拒绝服务（DDoS）攻击的最新趋势揭示了DDoS攻击的一种新威胁，称为对非目标利益相关者的附带损害。这些利益相关者包括受害虚拟机（VM），同级VM，主机物理机，其他主机物理机，其他主机上的VM，受攻击和共同托管的VM的用户，云提供商和云客户。这些附带损害背后的主要原因是云的功能，例如虚拟化，自动扩展，资源共享和迁移。在DDoS攻击期间，由于大量请求，将导致主机过载。在云中，这种过载情况由各种现有的迁移策略处理。如果受攻击的VM存在于云网络中，则这些简单的迁移策略效率不高。因此，本文提出了一个支持框架，即受攻击的虚拟机检测和恢复（AVDR）。拟议的AVDR框架提高了现有迁移策略的性能，并减少了附带损害。AVDR框架基于攻击强度'\（Y_ {as} \） '，因此也提出了用于评估' \（Y_ {as} \） '的线性模型。用于' \（Y_ {as} \） '建模的数据集是在AWS上创建的VM实例上生成的。它包含攻击和良性请求跟踪。结果证明了所提出工作的有效性。