SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment

Tianyi Xing; Dijiang Huang; Le Xu; Chun Jen Chung; Pankaj Khatkar

doi:10.1109/GREE.2013.25

SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment

Tianyi Xing, Dijiang Huang, Le Xu, Chun Jen Chung, Pankaj Khatkar

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

116 Scopus citations

Abstract

Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.

Original language	English (US)
Title of host publication	Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
Pages	89-92
Number of pages	4
DOIs	https://doi.org/10.1109/GREE.2013.25
State	Published - 2013
Event	2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013 - Salt Lake City, UT, United States Duration: Mar 20 2013 → Mar 22 2013

Publication series

Name	Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

Other

Other	2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
Country/Territory	United States
City	Salt Lake City, UT
Period	3/20/13 → 3/22/13

ASJC Scopus subject areas

Education

Access to Document

10.1109/GREE.2013.25

Cite this

Xing, T., Huang, D., Xu, L., Chung, C. J., & Khatkar, P. (2013). SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment. In Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013 (pp. 89-92). Article 6601422 (Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013). https://doi.org/10.1109/GREE.2013.25

SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment. / Xing, Tianyi; Huang, Dijiang; Xu, Le et al.
Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013. 2013. p. 89-92 6601422 (Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Xing, T, Huang, D, Xu, L, Chung, CJ & Khatkar, P 2013, SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment. in Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013., 6601422, Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013, pp. 89-92, 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013, Salt Lake City, UT, United States, 3/20/13. https://doi.org/10.1109/GREE.2013.25

@inproceedings{e74aa19671c54628b95bdcd9b7413607,

title = "SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment",

abstract = "Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.",

author = "Tianyi Xing and Dijiang Huang and Le Xu and Chung, {Chun Jen} and Pankaj Khatkar",

year = "2013",

doi = "10.1109/GREE.2013.25",

language = "English (US)",

isbn = "9780769550039",

series = "Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013",

pages = "89--92",

booktitle = "Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013",

}

TY - GEN

T1 - SnortFlow

T2 - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

AU - Xing, Tianyi

AU - Huang, Dijiang

AU - Xu, Le

AU - Chung, Chun Jen

AU - Khatkar, Pankaj

PY - 2013

Y1 - 2013

N2 - Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.

AB - Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.

UR - http://www.scopus.com/inward/record.url?scp=84885205587&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84885205587&partnerID=8YFLogxK

U2 - 10.1109/GREE.2013.25

DO - 10.1109/GREE.2013.25

M3 - Conference contribution

AN - SCOPUS:84885205587

SN - 9780769550039

T3 - Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

SP - 89

EP - 92

BT - Proceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

Y2 - 20 March 2013 through 22 March 2013

ER -

SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this