An intrusion detection and prevention system in cloud computing: A systematic review

被引:272
作者
Patel, Ahmed [1 ]
Taghavi, Mona [1 ]
Bakhtiyari, Kaveh [1 ]
Celestino Junior, Joaquim [2 ]
机构
[1] Univ Kebangsaan Malaysia UKM, Fac Informat Sci & Technol UKM, Sch Comp Sci, Ctr Software Technol & Management SOFTAM, Ukm Bangi 43600, Selangor Darul, Malaysia
[2] State Univ Ceara UECE, Vieira Comp Networks & Secur Lab LARCES, Fortaleza, Ceara, Brazil
关键词
Intrusion detection and prevention; Cloud computing; Taxonomy; Alarm correlation; System requirements; ANOMALY DETECTION; ATTACK-DETECTION; GENERATION; CHALLENGES; NETWORKS; ALARM;
D O I
10.1016/j.jnca.2012.08.007
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
080201 [机械制造及其自动化];
摘要
The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are largely inefficient to be deployed in cloud computing environments due to their openness and specific essence. This paper surveys, explores and informs researchers about the latest developed IDPSs and alarm management techniques by providing a comprehensive taxonomy and investigating possible solutions to detect and prevent intrusions in cloud computing systems. Considering the desired characteristics of IDPS and cloud computing systems, a list of germane requirements is identified and four concepts of autonomic computing self-management, ontology, risk management, and fuzzy theory are leveraged to satisfy these requirements. (C) 2012 Elsevier Ltd. All rights reserved.
引用
收藏
页码:25 / 41
页数:17
相关论文
共 89 条
[1]
New data mining technique to enhance IDS alarms quality [J].
Al-Mamory, Safaa O. ;
Zhang, Hongli .
JOURNAL OF COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2010, 6 (01) :43-55
[2]
[Anonymous], THESIS U GOTHENBURG
[3]
[Anonymous], SONY NETWORK BREACH
[4]
[Anonymous], FUTURE GENERATION CO
[5]
[Anonymous], S AFR INF SEC MULT S
[6]
[Anonymous], PERVASIVE COMPUTING
[7]
[Anonymous], 2010, TOP THREATS CLOUD CO
[8]
[Anonymous], 10 IFIP IEEE INT S I
[9]
[Anonymous], ISSUES INFORM SCI IN
[10]
[Anonymous], GUIDE COMPUTER NETWO