Novel intrusion detection system for cloud computing: A case study

Ming Yi Liao, Zhi Kai Mo, Mon Yen Luo, Chu Sing Yang, Jiann Liang Chen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Because of the growth in cloud computing and manturity of virtualization technology, many enterprises are virtualizing their servers to increase server utilization and lower costs. However, the complex network topology arising from virtualization makes clouds vulnerable, and security breaches have occurred on cloud computing platforms in recent years. Therefore, a compre-hensive mechanism for detecting and preventing malicious traffic is necessary. We propose a network intrusion detection system that is based on a virtualization platform. This system, developed from a multipattern based network traffic classifier, collects packets from the virtual network environment and analyzes their content by using deep packet inspection for identifying malicious network traffic and intrusion attempts. We improve the intrusion detection features of the network traffic classifier and deploy it on a Xen virtualization platform. Our system can be combined with the Linux Netfilter framework to monitor inter-virtual-machine communications in the virtualization platform. It efficiently inspects packets and instantly protects the cloud computing environment from malicious traffic.

Original languageEnglish
Title of host publicationCloud Computing and Big Data - 2nd International Conference, CloudCom-Asia 2015, Revised Selected Papers
EditorsChing-Hsien Hsu, Weizhong Qiang, Xianghan Zheng
PublisherSpringer Verlag
Pages386-398
Number of pages13
ISBN (Print)9783319284293
DOIs
Publication statusPublished - 2015 Jan 1
Event2nd International Conference on Cloud Computing and Big Data, CloudCom-Asia 2015 - Huangshan, China
Duration: 2015 Jun 172015 Jun 19

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume9106
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other2nd International Conference on Cloud Computing and Big Data, CloudCom-Asia 2015
CountryChina
CityHuangshan
Period15-06-1715-06-19

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint Dive into the research topics of 'Novel intrusion detection system for cloud computing: A case study'. Together they form a unique fingerprint.

  • Cite this

    Liao, M. Y., Mo, Z. K., Luo, M. Y., Yang, C. S., & Chen, J. L. (2015). Novel intrusion detection system for cloud computing: A case study. In C-H. Hsu, W. Qiang, & X. Zheng (Eds.), Cloud Computing and Big Data - 2nd International Conference, CloudCom-Asia 2015, Revised Selected Papers (pp. 386-398). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 9106). Springer Verlag. https://doi.org/10.1007/978-3-319-28430-9_29