DCDIDP: A distributed, collaborative, and data-driven intrusion detection and prevention framework for cloud computing environments

ColiaborateCom 2011 - Proceedings of the 7th International Conference on Collaborative Computing: Networking, Applications and Worksharing

Volumn , Issue , 2011, Pages 332-341

  Zargar, Saman Taghavi ^a   Takabi, Hassan ^a   Joshi, James B D ^a  

^a UNIVERSITY OF PITTSBURGH   (United States)

Author keywords

Cloud computing; collaborative IDPS; distributed IDPS; intrusion detection

Indexed keywords

ARCHITECTURAL LEVELS; CLOUD SERVICES; COLLABORATIVE IDPS; COMPUTING ENVIRONMENTS; DATA-DRIVEN; DISTRIBUTED IDPS; INTRUSION DETECTION AND PREVENTION; INTRUSION DETECTION AND PREVENTION SYSTEMS; SECURITY ISSUES; SECURITY MECHANISM; TRUST MANAGEMENT;

CLOUD COMPUTING; DISTRIBUTED DATABASE SYSTEMS; INTRUSION DETECTION; NETWORK LAYERS;

COMPUTER SYSTEMS;

EID: 84857574309     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.4108/icst.collaboratecom.2011.247158     Document Type: Conference Paper

References (28)

1. NIST SP SOO-1 45, The NIST Definition of Cloud Computing, http://csrc.nist. gov/publications/drafts/SOO-1 45IDraft-SP-SOO-1 45-clouddefinition. pdf, NIST Special Publication SOO-145, January 2011 .
2. S. Roschke, F. Cheng, and C. Meinel, Intrusion Detection in the Cloud, Eighth IEEE International Conference on Dependable, Autonomic and Secure Computing (DAS C ' 09), pp.729-734, China, 2009.
3. D. Song, L. Wei-min, Z. Tao, and Y. Yong, Distributed Proactive Defe nse base d on Cloud Computing, In International Conference on Intelligent Computing and Integrated Systems (ICISS), pp. 95-98, Guilin, China, October 22-24, 20 1 0.
4. A. Y. Dastjerdi, K. A. Bakar, and S. G. H. Tabatabaei, Distribute d Intrusion Detection in Clouds Using Mobile Agents, In Third International Conference on Advanced Engineering Computing and Applications in Sciences (ADVCOMP' 09), pp. 175-1 80, Sliema, October 1 1-1 6 , 2009.
5. C. Mazzariello, R. Bifulco, and R. Canonico, Integrating a Network IDS into an Open Source Cloud Computing Environment, In Sixth International Conference on Information Assurance and Security (IAS '10), pp. 265-270, Atlanta, GA, August 23-25, 2010.
6. S.T. Zargar, and J. Joshi, A Collaborative Approach to Facilitate Intrusion Detection and Response against DDoS Attacks, 6th Inti Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom'10), Chicago, IL, October 9-1 2 , 20 1 0.
7. T. Znati, J. Amadei, D. R. Pazehoski, and S. Sweeny On the Design and Pe iformance of an Adaptive, Global Strategy for De te cting and Mitigating Distributed DoS Attacks in GRID and Collaborative Workflow Environments, Simulation, vol. 83, no. 3, pp. 29 1-303, 2007.
8. J. Mirkovic, and P. Reiher, A taxonomy of DDoS attack and DDoS defe nse mechanisms, ACM SIGCOMM Computer Communications Review, vol. 34, no. 2, pp. 39-53, 2004.
9. M. Laureano, C. Maziero, and E. Jamhour, Protecting host-based intrusion detectors through virtual machines, Computer Networks, vol. 51 , no. 5, pp. 1 275-1 283, April 2007.
10. NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS), http://csrc.nist. gov/publications/nistpubs/800-94/SP800-94.pdf, NIST Special Publication 800-94, February 2007.
11. S. Jin, Y. Wang, X. Cui, and X. Yun A review of classification methods for network vulnerability, in Systems, Man and Cybernetics (SMC ' 09), San Antonio, TX, October 1 1-1 4, 2009.
12. M. Gegick, and L. Williams Matching attack patte rns to security vulne rabilities in software-intensive system designs, SIGSOFT Softw. Eng. Notes, Vol. 30, no. 4, pp. 1-7, May 2005.
13. H. Shahriar, and M. Zulkernine Taxonomy and classification of automatic monitoring of program security vulnerability exploitations, Journal of Systems and Software, Vol. 84, no. 2, pp. 250-269, February 2011 .
14. P. Moore, R. J. Ellison, and R. C. Linger Attack Modeling for Information Security and Survivability, CMU/SEI-2001-TN-00 1 , Software Engineering Institute, Carnegie Mellon University, March 2001 .
15. B. Schneier Attack Tre e s, Secrets and Lies, John Wiley and Sons, pp. 3 1 8-333, New York, 2000.
16. O. Sheyner, J. Haines, S. Jha, R. Lippmann, and J. M. Wing Automated Generation and Analysis of Attack Graphs, IEEE Symposium on Security and Privacy, IEEE Computer Society, 2002.
17. B. Schneier Modeling security threats, http://www.schneier.com/ paperattacktrees-ddj-ft. html
18. P. Ning, Y. Cui, and D. S. Reeves Constructing Attack Scenarios through Correlation of Intrusion Alerts, 9th ACM conference on Computer and communications security, November 2002.
19. w. Yu-Sung, B. Foo, Y. Mei, and S. Bagchi Collaborative intrusion detection system (ClDS): A framework for accurate and efficient IDS, 19th Annual Computer Security Applications Conference, pp. 234-244, December 2003.
20. NIST SP 800-30, Risk Management Guide for Iriformation Te chnology Systems, http://csrc.nist. gov/publications/nistpubs/800-30/sp800-30.pdf, NIST Special Publication 800-30, July 2002.
21. J. B. D. Joshi, A. Ghafoor, W. Aref, and E. H. Spafford Digital Gove rnment Security and Privacy Challenge s, William J. Mciver, Jf. and Ahmed K. Elmagarmid (eds) Advances in Digital Government: Technology, Human Factors, and Policy, Boston, KJuwer, Chapter 7, pp. 1 2 1-1 36, 2002.
22. M. Bishop A Taxonomy of Unix System and Network Vulne rabilitie s, Technical Report CSE-9 5 1 O , Department of Computer Science, University of California at Davis, May 1995.
23. Y. Liu, F. L. Presti, Y. Misra, D. Towsley, and Y. Gu Scalable Fluid Models and Simulations for Large Scale IP Networks, ACM Transactions on Modeling and Computer Simulation, Vol. 14, No. 3, 2004.
24. H. Takabi, J.B.D. Joshi, and G.-J. Ahn, Se cure Cloud: Towards a Compre hensive Security Framework for Cloud Computing Environments, 341 In Proc. of the 1 st IEEE International Workshop Emerging Applications for Cloud Computing (CloudApp 20 1 0), pp. 393-39 8, Seoul, South Korea, 2010.
25. H. Takabi, J. B. D. Joshi, and G. J. Ahn, Security and Privacy Challenges in Cloud Computing Environments, IEEE Security and Privacy, Vol. 8, No. 6, pp. 25-3 1 , 2010.
26. K. Vieira, A. Schulter, C. B. WestphaU, and C. M. Westphall, Intrusion Detection for Grid and Cloud Computing, In IT Professional, Vol. 1 2 , no. 4, pp. 38-43, July-Aug. 20 1 0.
27. J. Xu, J. Yan, L. He, P. Su, and D. Feng, CloudSEC: A Cloud Archite cture for Composing Collaborative Security Se rvices, In IEEE Second International Conference on Cloud Computing Technology and Science (CloudCom'10), pp. 703-711, Indianapolis, IN, Nov. 30-Dec. 3, 2010.
28. D. Smith, Q. Guan, and S. Fu, An Anomaly Detection Framework for Autonomic Management of Compute Cloud Systems, In IEEE 34th Annual Computer Software and Applications Conference Workshops (COMPSACW), pp. 376-38 1 , Seoul, Japan, July 19-23, 2010.