SnortFlow: A OpenFlow-based Intrusion Prevention System in Cloud Environment

被引:73
|
作者
Xing, Tianyi [1 ]
Huang, Dijiang [1 ]
Xu, Le [1 ]
Chung, Chun-Jen [1 ]
Khatkar, Pankaj [1 ]
机构
[1] Arizona State Univ, Tempe, AZ 85287 USA
来源
2013 SECOND GENI RESEARCH AND EDUCATIONAL EXPERIMENT WORKSHOP (GREE) | 2013年
关键词
D O I
10.1109/GREE.2013.25
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called "SnortFlow", in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.
引用
收藏
页码:89 / 92
页数:4
相关论文
共 50 条
  • [41] A Design of Firewall Based on Feedback of Intrusion Detection System in Cloud Environment
    Ma, Xiaoyu
    Fu, Xiao
    Luo, Bin
    Du, Xiaojiang
    Guizani, Mohsen
    2019 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2019,
  • [42] CS-PSO based Intrusion Detection System in Cloud Environment
    Ghosh, Partha
    Karmakar, Arnab
    Sharma, Joy
    Phadikar, Santanu
    EMERGING TECHNOLOGIES IN DATA MINING AND INFORMATION SECURITY, IEMIS 2018, VOL 1, 2019, 755 : 261 - 269
  • [43] Independent Transient Plane Design for Protection in OpenFlow-Based Networks
    Kitsuwan, Nattapong
    McGettrick, Seamas
    Slyne, Frank
    Payne, David B.
    Ruffini, Marco
    JOURNAL OF OPTICAL COMMUNICATIONS AND NETWORKING, 2015, 7 (04) : 264 - 275
  • [44] Architecture on Mobility Management in OpenFlow-based Radio Access Networks
    Sun, Guolin
    Liu, Guisong
    Zhang, Hangming
    Tan, Wei
    2013 IEEE GLOBAL HIGH TECH CONGRESS ON ELECTRONICS (GHTCE), 2013,
  • [45] Efficient topology discovery in OpenFlow-based Software Defined Networks
    Pakzad, Farzaneh
    Portmann, Marius
    Tan, Wee Lum
    Indulska, Jadwiga
    COMPUTER COMMUNICATIONS, 2016, 77 : 52 - 61
  • [46] OpenFlow-Based Control Architecture for the Mobile FreeSpace Optical Networks
    Zhao Yongli
    Gao Lingnan
    Yin Xingbin
    Yu Yue
    Zhang Jie
    CHINA COMMUNICATIONS, 2014, 11 (08) : 65 - 72
  • [47] Periodic Control Update Overheads in OpenFlow-Based Enterprise Networks
    Awobuluyi, Olatunde
    2014 IEEE 28TH INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS (AINA), 2014, : 390 - 396
  • [48] Performances of OpenFlow-Based Software-Defined Networks: An overview
    Benamrane, Fouad
    Ben Mamoun, Mouad
    Benaini, Redouane
    JOURNAL OF NETWORKS, 2015, 10 (06) : 329 - 337
  • [49] Modeling and Verifying TopoGuard in OpenFlow-Based Software Defined Networks
    Xiang, Shuangqing
    Zhu, Huibiao
    Xiao, Lili
    Xie, Wanling
    PROCEEDINGS 2018 12TH INTERNATIONAL SYMPOSIUM ON THEORETICAL ASPECTS OF SOFTWARE ENGINEERING (TASE 2018), 2018, : 84 - 91
  • [50] An Openflow-Based Approach to Failure Detection and Protection for a Multicasting Tree
    Raja, Vignesh Renganathan
    Pandey, Abhishek
    Lung, Chung-Horng
    WIRED/WIRELESS INTERNET COMMUNICATIONS, WWIC 2015, 2015, 9071 : 211 - 224
12345