A risk mitigation approach for autonomous cloud intrusion response system

被引:28
作者
Kholidy, Hisham A. [1 ,3 ]
Erradi, Abdelkarim [2 ]
Abdelwahed, Sherif [3 ]
Baiardi, Fabrizio [4 ]
机构
[1] Fayoum Univ, Fac Comp & Informat, Dept Comp Sci, Al Fayyum, Egypt
[2] Qatar Univ, Dept Comp Sci & Engn, Coll Engn, Doha, Qatar
[3] Mississippi State Univ, Elect & Comp Engn, Starkville, MS 39762 USA
[4] Univ Pisa, Dipartimento Informat, Pisa, Italy
来源
COMPUTING | 2016年 / 98卷 / 11期
关键词
Cloud computing; Security; Intrusion; Attacks; Masquerade; Risk assessment; Risk mitigation; Autonomic;
D O I
10.1007/s00607-016-0495-8
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Cloud computing delivers on-demand resources over the Internet on a pay-for-use basis, intruders may exploit clouds for their advantage. This paper presents Autonomous Cloud Intrusion Response System (ACIRS), a proper defense strategy for cloud systems. ACIRS continuously monitors and analyzes system events and computes security and risk parameters to provide risk assessment and mitigation capabilities with a scalable and elastic architecture with no central coordinator. It detects masquerade, host based and network based attacks and selects the appropriate response to mitigate these attacks. ACIRS is superior to NICE (Network Intrusion Detection and Countermeasure Selection system) in reducing the risk by 38 %. This paper describes the components, architecture, and advantages of ACIRS.
引用
收藏
页码:1111 / 1135
页数:25
相关论文
共 24 条
  • [1] [Anonymous], 8 INT C DEP AUT SEC
  • [2] [Anonymous], INT J COMPUT APPL
  • [3] [Anonymous], LECT NOTES COMPUT SC
  • [4] [Anonymous], P WORLD C ENG 2014 L
  • [5] [Anonymous], NATL I STANDARDS TEC
  • [6] [Anonymous], 3 INT C ADV ENG COMP
  • [7] [Anonymous], 2007, RFC4765
  • [8] [Anonymous], TOP THREATS CLOUD CO
  • [9] [Anonymous], CASE STUDIES SECURE
  • [10] [Anonymous], IJCSNS INT J COMPUT
123