SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment

Tianyi Xing, Dijiang Huang, Le Xu, Chun Jen Chung, Pankaj Khatkar

Research output: Chapter in Book/Report/Conference proceedingConference contribution

72 Scopus citations

Abstract

Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.

Original languageEnglish (US)
Title of host publicationProceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
Pages89-92
Number of pages4
DOIs
StatePublished - Oct 15 2013
Event2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013 - Salt Lake City, UT, United States
Duration: Mar 20 2013Mar 22 2013

Publication series

NameProceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

Other

Other2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
CountryUnited States
CitySalt Lake City, UT
Period3/20/133/22/13

    Fingerprint

ASJC Scopus subject areas

  • Education

Cite this

Xing, T., Huang, D., Xu, L., Chung, C. J., & Khatkar, P. (2013). SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment. In Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013 (pp. 89-92). [6601422] (Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013). https://doi.org/10.1109/GREE.2013.25