Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing

Ahmed Patel, Mona Taghavi, Kaveh Bakhtiyari, Joaquim Celestino

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    8 Citations (Scopus)

    Abstract

    The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are deemed largely inefficient to be deployed in cloud computing environments due to their openness, dynamicity and virtualization in offered services. This paper surveys and explores the possible solutions to detect and prevent intrusions in cloud computing systems by providing a comprehensive taxonomy of existing IDPS. It discusses the key features of IDPS that are challenging and crucial for choosing the right security measures for designing an IDPS. The paper further reviews the current state of the art of developed IDPSs for cloud computing which uses advanced techniques in overcoming the challenges imposed by cloud computing requirements for more resilient, effective and efficient IDPSs, abbreviated as CIPDS.

    Original languageEnglish
    Title of host publicationLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
    Pages441-458
    Number of pages18
    Volume7672 LNCS
    DOIs
    Publication statusPublished - 2012
    Event4th International Symposium on Cyberspace Safety and Security, CSS 2012 - Melbourne, VIC
    Duration: 12 Dec 201213 Dec 2012

    Publication series

    NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
    Volume7672 LNCS
    ISSN (Print)03029743
    ISSN (Electronic)16113349

    Other

    Other4th International Symposium on Cyberspace Safety and Security, CSS 2012
    CityMelbourne, VIC
    Period12/12/1213/12/12

    Fingerprint

    Intrusion detection
    Taxonomies
    Intrusion Detection
    Cloud computing
    Taxonomy
    Cloud Computing
    Virtualization
    Attack
    Architecture
    Target
    Requirements

    Keywords

    • architecture
    • autonomic techniques
    • cloud computing
    • Intrusion detection
    • intrusion prevention
    • taxonomy

    ASJC Scopus subject areas

    • Computer Science(all)
    • Theoretical Computer Science

    Cite this

    Patel, A., Taghavi, M., Bakhtiyari, K., & Celestino, J. (2012). Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7672 LNCS, pp. 441-458). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7672 LNCS). https://doi.org/10.1007/978-3-642-35362-8_33

    Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing. / Patel, Ahmed; Taghavi, Mona; Bakhtiyari, Kaveh; Celestino, Joaquim.

    Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 7672 LNCS 2012. p. 441-458 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7672 LNCS).

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    Patel, A, Taghavi, M, Bakhtiyari, K & Celestino, J 2012, Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). vol. 7672 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7672 LNCS, pp. 441-458, 4th International Symposium on Cyberspace Safety and Security, CSS 2012, Melbourne, VIC, 12/12/12. https://doi.org/10.1007/978-3-642-35362-8_33
    Patel A, Taghavi M, Bakhtiyari K, Celestino J. Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 7672 LNCS. 2012. p. 441-458. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-35362-8_33
    Patel, Ahmed ; Taghavi, Mona ; Bakhtiyari, Kaveh ; Celestino, Joaquim. / Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 7672 LNCS 2012. pp. 441-458 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
    @inproceedings{7b95222b63954425b732c25da4771aff,
    title = "Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing",
    abstract = "The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are deemed largely inefficient to be deployed in cloud computing environments due to their openness, dynamicity and virtualization in offered services. This paper surveys and explores the possible solutions to detect and prevent intrusions in cloud computing systems by providing a comprehensive taxonomy of existing IDPS. It discusses the key features of IDPS that are challenging and crucial for choosing the right security measures for designing an IDPS. The paper further reviews the current state of the art of developed IDPSs for cloud computing which uses advanced techniques in overcoming the challenges imposed by cloud computing requirements for more resilient, effective and efficient IDPSs, abbreviated as CIPDS.",
    keywords = "architecture, autonomic techniques, cloud computing, Intrusion detection, intrusion prevention, taxonomy",
    author = "Ahmed Patel and Mona Taghavi and Kaveh Bakhtiyari and Joaquim Celestino",
    year = "2012",
    doi = "10.1007/978-3-642-35362-8_33",
    language = "English",
    isbn = "9783642353611",
    volume = "7672 LNCS",
    series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
    pages = "441--458",
    booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

    }

    TY - GEN

    T1 - Taxonomy and proposed architecture of intrusion detection and prevention systems for cloud computing

    AU - Patel, Ahmed

    AU - Taghavi, Mona

    AU - Bakhtiyari, Kaveh

    AU - Celestino, Joaquim

    PY - 2012

    Y1 - 2012

    N2 - The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are deemed largely inefficient to be deployed in cloud computing environments due to their openness, dynamicity and virtualization in offered services. This paper surveys and explores the possible solutions to detect and prevent intrusions in cloud computing systems by providing a comprehensive taxonomy of existing IDPS. It discusses the key features of IDPS that are challenging and crucial for choosing the right security measures for designing an IDPS. The paper further reviews the current state of the art of developed IDPSs for cloud computing which uses advanced techniques in overcoming the challenges imposed by cloud computing requirements for more resilient, effective and efficient IDPSs, abbreviated as CIPDS.

    AB - The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are deemed largely inefficient to be deployed in cloud computing environments due to their openness, dynamicity and virtualization in offered services. This paper surveys and explores the possible solutions to detect and prevent intrusions in cloud computing systems by providing a comprehensive taxonomy of existing IDPS. It discusses the key features of IDPS that are challenging and crucial for choosing the right security measures for designing an IDPS. The paper further reviews the current state of the art of developed IDPSs for cloud computing which uses advanced techniques in overcoming the challenges imposed by cloud computing requirements for more resilient, effective and efficient IDPSs, abbreviated as CIPDS.

    KW - architecture

    KW - autonomic techniques

    KW - cloud computing

    KW - Intrusion detection

    KW - intrusion prevention

    KW - taxonomy

    UR - http://www.scopus.com/inward/record.url?scp=84871390566&partnerID=8YFLogxK

    UR - http://www.scopus.com/inward/citedby.url?scp=84871390566&partnerID=8YFLogxK

    U2 - 10.1007/978-3-642-35362-8_33

    DO - 10.1007/978-3-642-35362-8_33

    M3 - Conference contribution

    SN - 9783642353611

    VL - 7672 LNCS

    T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

    SP - 441

    EP - 458

    BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

    ER -