A Cloud Tracing and Filtering Framework for Defensing Against Denial of Service Attacks

Abstract

Cloud computing is Internet-based computing, whereby shared resources, software, and information are provided to computers and other devices on demand, like the electricity grid. One of the most serious threats to cloud computing itself comes from Denial of Service attacks, especially HTTP or XML-Based Denial of Service attacks. These types of attacks are simple and easy to implement by the attacker, but to security experts they are twice as difficult to stop. In this paper, we introduced a security service called Cloud Tracing & Filtering (CTF), which is like a service broker within a SOA model, and a back propagation neutral network called Cloud Shield, which was trained to detect and filter DoS attack traffic. And we also presented a solution to detect and trace through CTF to find the source of those attacks. The experimental results show that CTF is able to detect and filter most of the attack messages and to identify the source of the attack within a short period of time.