Title :
Integrating a network IDS into an open source Cloud Computing environment
Author :
Mazzariello, Claudio ; Bifulco, Roberto ; Canonico, Roberto
Author_Institution :
Dipt. di Inf. e Sist., Univ. degli Studi di Napoli Federico II, Naples, Italy
Abstract :
The success of the Cloud Computing paradigm may be jeopardized by concerns about the risk of misuse of this model aimed at conducting illegal activities. In this paper we address the issue of detecting Denial of Service attacks performed by means of resources acquired on-demand on a Cloud Computing platform. To this purpose, we propose to investigate the consequences of the use of a distributed strategy to detect and block attacks, or other malicious activities, originated by misbehaving customers of a Cloud Computing provider. In order to check the viability of our approach, we also evaluate the impact on performance of our proposed solution. This paper presents the installation and deployment experience of a distributed defence strategy and illustrates the preliminary results of the performance evaluation.
Keywords :
Internet; public domain software; security of data; distributed defence strategy; intrusion detection system; network IDS; open source cloud computing; service attack detection; Bridges; Cloud computing; Clouds; Computational modeling; Intrusion detection; Virtual machining; Cloud Computing; Intrusion Detection; Performance Evaluation; Virtualization;
Conference_Titel :
Information Assurance and Security (IAS), 2010 Sixth International Conference on
Conference_Location :
Atlanta, GA
Print_ISBN :
978-1-4244-7407-3
DOI :
10.1109/ISIAS.2010.5604069
