Title :
A general cloud firewall framework with dynamic resource allocation
Author :
Shui Yu ; Doss, Robin ; Wanlei Zhou ; Song Guo
Author_Institution :
SIT, Deakin Univ., VIC, Australia
Abstract :
Cloud is becoming a dominant computing platform. However, we see few work on how to protect cloud data centers. As a cloud usually hosts many different type of applications, the traditional packet level firewall mechanism is not suitable for cloud platforms in case of complex attacks. It is necessary to perform anomaly detection at the event level. Moreover, protecting objects are more diverse than the traditional firewall. Motivated by this, we propose a general framework of cloud firewall, which features event level detection chain with dynamic resource allocation. We establish a mathematical model for the proposed framework. Moreover, a linear resource investment function is proposed for economical dynamical resource allocation for cloud firewalls. A few conclusions have been extracted for the reference of cloud service providers and designers.
Keywords :
cloud computing; firewalls; resource allocation; anomaly detection; cloud data center protection; economical dynamical resource allocation; event level detection chain; general cloud firewall framework; linear resource investment function; mathematical model; packet level firewall mechanism; Cloud computing; Computer crime; Detectors; Investment; Mathematical model; Resource management; Anomaly detection; cloud firewall; resource investment;
Conference_Titel :
Communications (ICC), 2013 IEEE International Conference on
Conference_Location :
Budapest
DOI :
10.1109/ICC.2013.6654807
