Customized Network Security for Cloud Service

Jin He, Kaoru Ota, Mianxiong Dong, Laurence T. Yang, Minyu Fan, Guangwei Wang, Sik-Sang Yau

Research output: Contribution to journalArticle

Abstract

Modern cloud computing platforms based on virtual machine monitors (VMMs) host a variety of complex businesses which present many network security vulnerabilities. In order to protect network security for these businesses in cloud computing, nowadays, a number of middleboxes are deployed at front-end of cloud computing or parts of middleboxes are deployed in cloud computing. However, the former is leading to high cost and management complexity, and also lacking of network security protection between virtual machines while the latter does not effectively prevent network attacks from external traffic. To address the above-mentioned challenges, we introduce a novel customized network security for cloud service (CNS), which not only prevents attacks from external and internal traffic to ensure network security of services in cloud computing, but also affords customized network security service for cloud users. CNS is implemented by modifying the Xen hypervisor and proved by various experiments which showing the proposed solution can be directly applied to the extensive practical promotion in cloud computing.

Original languageEnglish (US)
JournalIEEE Transactions on Services Computing
DOIs
StateAccepted/In press - Jul 11 2017

Keywords

  • Cloud computing
  • Communication networks
  • Complexity theory
  • Computer architecture
  • Computer crime
  • FDCs
  • Middleboxes
  • customized network security service
  • network security
  • packet delay
  • throughput
  • unified management

ASJC Scopus subject areas

  • Hardware and Architecture
  • Computer Science Applications
  • Computer Networks and Communications
  • Information Systems and Management

Fingerprint Dive into the research topics of 'Customized Network Security for Cloud Service'. Together they form a unique fingerprint.

  • Cite this