Title :
Toward inter-VM visibility in a Cloud environment using packet inspection
Author :
Benzidane, Karim ; Khoudali, Saad ; Leila, Fetjah ; Sekkaki, Abderrahim
Author_Institution :
Comput. Sci. Dept., Univ. Hassan II, Casablanca, Morocco
Abstract :
Virtualization is one of the key elements of Infrastructure as a Service (IaaS), Cloud Computing (CC) offerings and private Clouds, and it is increasingly used in portions of the back-end of Platform as a Service (PaaS) and SaaS (Software as a Service) providers as well. This creates new targets for intrusion due to the complexity of access and difficulty in monitoring all interconnection points between systems, applications, and data sets. This raises many questions about the appropriate infrastructure, processes, and strategy for enacting detection and response to intrusion in a Cloud environment. This article discusses the security and the visibility issues of inter-VM traffic and solutions for it within a Cloud environment context, by proposing an approach relying on distributed intrusion detection technique and packet inspection.
Keywords :
cloud computing; security of data; virtual machines; CC; IaaS; PaaS; SaaS; cloud computing; cloud environment; data sets; distributed intrusion detection technique; infrastructure as a service; inter-VM visibility; interconnection point monitoring; packet inspection; platform as a service; private clouds; software as a service providers; virtual machines; virtualization; Cloud computing; Databases; IP networks; Inspection; Intrusion detection; Virtual machine monitors;
Conference_Titel :
Telecommunications (ICT), 2013 20th International Conference on
Conference_Location :
Casablanca
Print_ISBN :
978-1-4673-6425-6
DOI :
10.1109/ICTEL.2013.6632122
