This chapter provides a comprehensive study on the existing cloud security solutions and analyzes its challenges and trend. It presents an OpenFlow-based intrusion detection and prevention systems (IDPS) solution, called FlowIPS, that focuses on the intrusion prevention in the cloud virtual networking environment. FlowIPS provides network reconfiguration (NR) features by programming POX controllers to enable the FlowIPS mitigation approaches. The performance evaluation of FlowIPS demonstrates the feasibility of the proposed solution, which is more efficient compared to traditional IPS approaches. The chapter discusses the technical background of the software-defined networking (SDN) and intrusion detection system. It presents the existing solutions of the cloud security and describes the transformation from the existing cloud security solutions to the next-generation SDN-based solutions.
- Cloud security
- FlowIPS design
- IDPS solution
- Network reconfiguration (NR) features
- POX controllers
- Software-defined networking (SDN)
ASJC Scopus subject areas