Title :
An Autonomous Agent Based Incident Detection System for Cloud Environments
Author :
Doelitzscher, Frank ; Reich, Christoph ; Knahl, Martin ; Clarke, Nathan
Author_Institution :
Cloud Res. Lab., Furtwangen Univ., Furtwangen, Germany
fDate :
Nov. 29 2011-Dec. 1 2011
Abstract :
Classic intrusion detection mechanisms are not flexible enough to cope with cloud specific characteristics such as frequent infrastructure changes. This makes them unable to address new cloud specific security issues. In this paper we introduce the cloud incident detection system Security Audit as a Service (SAaaS). It is build upon intelligent autonomous agents, which are aware of underlying business flows of deployed cloud instances. Business flows are modelled in form of Security Service Level Agreements, which enable the SAaaS architecture to be flexible and to supported cross customer event monitoring of a cloud infrastructure. As contribution of this paper we provide a high-level design of the SAaaS architecture, an introduction into the concept of Security Service Level Agreements, a first prototype of an autonomous agent and an evaluation about, which cloud specific security problems are addressed by the presented architecture.
Keywords :
business data processing; cloud computing; security of data; software agents; SAaaS architecture; business flows; cloud environments; cloud incident detection system; cloud specific security issues; cross customer event monitoring; infrastructure changes; intelligent autonomous agents; intrusion detection mechanisms; security audit as a service; security service level agreements; Autonomous agents; Business; Cloud computing; Computer architecture; Monitoring; Security; autonomous agents; cloud computing; security;
Conference_Titel :
Cloud Computing Technology and Science (CloudCom), 2011 IEEE Third International Conference on
Conference_Location :
Athens
Print_ISBN :
978-1-4673-0090-2
DOI :
10.1109/CloudCom.2011.35
