A general cloud firewall framework with dynamic resource allocation

Author

Shui Yu ; Doss, Robin ; Wanlei Zhou ; Song Guo

Author_Institution

SIT, Deakin Univ., VIC, Australia

fYear

2013

fDate

9-13 June 2013

Firstpage

1941

Lastpage

1945

Abstract

Cloud is becoming a dominant computing platform. However, we see few work on how to protect cloud data centers. As a cloud usually hosts many different type of applications, the traditional packet level firewall mechanism is not suitable for cloud platforms in case of complex attacks. It is necessary to perform anomaly detection at the event level. Moreover, protecting objects are more diverse than the traditional firewall. Motivated by this, we propose a general framework of cloud firewall, which features event level detection chain with dynamic resource allocation. We establish a mathematical model for the proposed framework. Moreover, a linear resource investment function is proposed for economical dynamical resource allocation for cloud firewalls. A few conclusions have been extracted for the reference of cloud service providers and designers.

Keywords

cloud computing; firewalls; resource allocation; anomaly detection; cloud data center protection; economical dynamical resource allocation; event level detection chain; general cloud firewall framework; linear resource investment function; mathematical model; packet level firewall mechanism; Cloud computing; Computer crime; Detectors; Investment; Mathematical model; Resource management; Anomaly detection; cloud firewall; resource investment;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications (ICC), 2013 IEEE International Conference on

Conference_Location

Budapest

ISSN

1550-3607

Type

conf

DOI

10.1109/ICC.2013.6654807

Filename

6654807