Discus: A massively distributed IDS architecture using a DSL-based configuration

Author

Riquet, Damien ; Grimaud, Gilles ; Hauspie, Michael

Author_Institution

Lab. d´Inf. Fondamentale de Lille, Univ. Lille 1, Villeneuve d´Ascq, France

Volume

2

fYear

2014

fDate

26-28 April 2014

Firstpage

1193

Lastpage

1197

Abstract

Nowadays, cloud computing becomes quite popular and a lot of research is done on services it provides. Most of security challenges induced by this new architecture are not yet tackled. In this work, we propose a new security architecture, based on a massively distributed network of security solutions, to address these challenges. Current solutions, like IDS or firewalls, were not formerly designed to detect attacks that draw profit from the cloud structure. Our solution Discus is based on a distributed architecture using both physical and virtual probes, along with former security solutions (IDS and firewalls). This paper describes Discus Script, a dedicated language that provides an easy way to configure the components of our solution.

Keywords

cloud computing; firewalls; security of data; DSL-based configuration; Discus Script; cloud computing; distributed architecture; firewalls; massively distributed IDS architecture; massively distributed network; physical probes; security architecture; security challenges; security solutions; virtual probes; Cloud computing; Communication networks; Computer architecture; Delays; Intrusion detection; Probes;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Science, Electronics and Electrical Engineering (ISEEE), 2014 International Conference on

Conference_Location

Sapporo

Print_ISBN

978-1-4799-3196-5

Type

conf

DOI

10.1109/InfoSEEE.2014.6947859

Filename

6947859