Network security for Hybrid Cloud

2014 Euro Med Telco Conference (EMTC) Pub Date : 2014-12-29 DOI:10.1109/EMTC.2014.6996640

P. Donadio, Giovanni B. Fioccola, R. Canonico, G. Ventre

{"title":"Network security for Hybrid Cloud","authors":"P. Donadio, Giovanni B. Fioccola, R. Canonico, G. Ventre","doi":"10.1109/EMTC.2014.6996640","DOIUrl":null,"url":null,"abstract":"Cloud computing has enabled elastic and transparent access to distributed services, without investing in new infrastructures. In the last few years, Cloud computing has grown from being a promising business concept to one of the fast growing segments of the IT industry. Despite of all the hype surrounding the Cloud, enterprise customers are still reluctant to deploy their business in the Cloud. Security is one of the major issues which reduces the growth of Cloud computing and complications with data privacy and data protection continue to plague the market. In this paper, we propose a solution for Hybrid Cloud security, focusing on a Virtual Intrusion Detection System (V-IDS). We present a new architecture that considers the basic principles of the Cloud computing, virtualization and GMPLS Control Plane and applies them to the intrusion detection systems, in order to protect Cloud networks characterized by constantly changing of the underlying infrastructure and physical topology. Based on the defined architecture, we have implemented a prototype of Cloud based IDS that validates our thesis. The prototype is realized though the integration of two open-source technologies: OpenStack and DRAGON (Dynamic Resource Allocation via GMPLS Optical Networks).","PeriodicalId":178778,"journal":{"name":"2014 Euro Med Telco Conference (EMTC)","volume":"106 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-12-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 Euro Med Telco Conference (EMTC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EMTC.2014.6996640","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

Cloud computing has enabled elastic and transparent access to distributed services, without investing in new infrastructures. In the last few years, Cloud computing has grown from being a promising business concept to one of the fast growing segments of the IT industry. Despite of all the hype surrounding the Cloud, enterprise customers are still reluctant to deploy their business in the Cloud. Security is one of the major issues which reduces the growth of Cloud computing and complications with data privacy and data protection continue to plague the market. In this paper, we propose a solution for Hybrid Cloud security, focusing on a Virtual Intrusion Detection System (V-IDS). We present a new architecture that considers the basic principles of the Cloud computing, virtualization and GMPLS Control Plane and applies them to the intrusion detection systems, in order to protect Cloud networks characterized by constantly changing of the underlying infrastructure and physical topology. Based on the defined architecture, we have implemented a prototype of Cloud based IDS that validates our thesis. The prototype is realized though the integration of two open-source technologies: OpenStack and DRAGON (Dynamic Resource Allocation via GMPLS Optical Networks).

查看原文本刊更多论文

混合云的网络安全

云计算实现了对分布式服务的弹性和透明访问，而无需投资新的基础设施。在过去的几年中，云计算已经从一个有前途的业务概念发展成为IT行业中快速增长的部分之一。尽管围绕云的宣传铺天盖地，企业客户仍然不愿意在云中部署他们的业务。安全性是阻碍云计算增长的主要问题之一，数据隐私和数据保护的复杂性继续困扰着市场。在本文中，我们提出了一种混合云安全解决方案，重点是虚拟入侵检测系统(V-IDS)。为了保护底层基础设施和物理拓扑结构不断变化的云网络，我们提出了一种新的体系结构，它考虑了云计算、虚拟化和GMPLS控制平面的基本原理，并将其应用于入侵检测系统。基于已定义的体系结构，我们实现了一个基于云的IDS原型，验证了我们的论文。该原型是通过集成OpenStack和DRAGON (GMPLS光网络动态资源分配)两种开源技术来实现的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2014 Euro Med Telco Conference (EMTC)

自引率

0.00%

发文量