Cloud Firewall Under Bursty and Correlated Data Traffic: A Theoretical Analysis

Cloud firewalls stand as one of the major building blocks of the cloud security framework protecting the Virtual Private Infrastructure against attacks such as the Distributed Denial of Service (DDoS). In order to fully characterize the cloud firewall operation and gain actionable insights on the de...

Full description

Saved in:
Bibliographic Details
Published in:IEEE transactions on cloud computing 2022-07, Vol.10 (3), p.1620-1633
Main Authors: Carvalho, Glaucio H.S., Woungang, Isaac, Anpalagan, Alagan
Format: Article
Language:English
Subjects:
Cloud computing
Cloud security
Computational modeling
Computer crime
Correlation
Data models
DDoS
Denial of service attacks
firewall
Firewalls
Markov chains
markov process
Markov processes
markov-modulated poisson process
Performance degradation
Poisson density functions
Queueing analysis
Security
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Cloud firewalls stand as one of the major building blocks of the cloud security framework protecting the Virtual Private Infrastructure against attacks such as the Distributed Denial of Service (DDoS). In order to fully characterize the cloud firewall operation and gain actionable insights on the design of cloud security, performance models for the cloud firewall become imperative. In this article, we propose a multi-dimensional Continuous-Time Markov Chain model for the cloud firewall that takes into account the burstiness and correlation features of the legitimate and malicious data traffic. By adopting the Markov-Modulated Poisson process (MMPP) and the Interrupted Poisson Process (IPP), we identify the workload conditions under which the cloud firewall might be subject to a loss of availability. Furthermore, by comparing the IPP and Poisson attacks, we numerically verify that the cloud firewall is inherently vulnerable to a burstiness-aware attack which might seriously compromise its operation. Additionally, we characterize the joint harmful impact of burstiness and correlation on the cloud firewall that might lead to performance degradation. Finally, we design an elastic cloud firewall by proposing a MMPP-driven load balancing procedure that provisions virtual firewalls dynamically while fulfilling a Service Level Agreement (SLA) latency specification.
ISSN:2168-7161
2168-7161
2372-0018
DOI:10.1109/TCC.2020.3000674