Detection of Distributed Attacks in Hybrid & Public Cloud Networks

Author

Hassan, S.R. ; Bourgeois, Julien ; Sunderam, Vaidy ; Li Xiong

Author_Institution

FEMTO-ST Inst., Univ. of Franche-Comte (UFC), Montbeliard, France

fYear

2012

fDate

22-24 Oct. 2012

Firstpage

9

Lastpage

15

Abstract

In this paper early detection of distributed attacks are discussed that are launched from multiple sites of the hybrid & public cloud networks. A prototype of Cloud Distributed Intrusion Detection System (CDIDS) is discussed with some basic experiments. The summation of security alerts has been applied which helps to detect distributed attacks while keeping the false positive at the minimum. Using the summation of security alerts mechanism the attacks that have slow iteration rate are detected at an early stage. The objective of our work is to propose a Security Management System (SMS) that can detect malicious activities as early as possible and camouflaging of attacks under the conditions when other security management systems become unstable due to intense events of attacks.

Keywords

cloud computing; computer network security; minimisation; CDIDS prototype; SMS; cloud distributed intrusion detection system; distributed attack detection; false positive minimisation; hybrid cloud networks; malicious activity detection; public cloud networks; security alerts summation; security management system; Cloud computing; Fault tolerance; IP networks; Intrusion detection; Organizations; Virtual machining;

fLanguage

English

Publisher

ieee

Conference_Titel

Semantics, Knowledge and Grids (SKG), 2012 Eighth International Conference on

Conference_Location

Beijing

Print_ISBN

978-1-4673-2561-5

Type

conf

DOI

10.1109/SKG.2012.28

Filename

6391805