Integrating Signature Apriori based Network Intrusion Detection System (NIDS) in Cloud Computing

One of the major security issues in Cloud computing is to detect malicious activities at the network layer. In this paper, we propose a framework integrating network intrusion detection system (NIDS) in the Cloud. Our NIDS module consists of Snort and signature apriori algorithm. It generates new ru...

Full description

Saved in:
Bibliographic Details
Published in:Procedia technology 2012, Vol.6, p.905-912
Main Authors: Modi, Chirag N., Patel, Dhiren R., Patel, Avi, Rajarajan, Muttukrishnan
Format: Article
Language:English
Subjects:
Cloud computing
Network based intrusion detection system
Signature apriori algorithm
Snort
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:One of the major security issues in Cloud computing is to detect malicious activities at the network layer. In this paper, we propose a framework integrating network intrusion detection system (NIDS) in the Cloud. Our NIDS module consists of Snort and signature apriori algorithm. It generates new rules from captured packets. These new rules are appended in the Snort configuration file to improve efficiency of Snort. It aims to detect known attacks and derivative of known attacks in Cloud by monitoring network traffic, while ensuring low false positive rate with reasonable computational cost. We also recommend the positioning of NIDS in Cloud. We present experimental setup and discuss the design goals expected from proposed framework.
ISSN:2212-0173
2212-0173
DOI:10.1016/j.protcy.2012.10.110