SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment

Tianyi Xing, Dijiang Huang, Le Xu, Chun Jen Chung, Pankaj Khatkar

Research output: Chapter in Book/Report/Conference proceedingConference contribution

86 Scopus citations

Abstract

Security has been one of the top concerns in clouds. It is challenging to construct a secure networking environment in clouds because the cloud is usually a hybrid networking system containing both physical and virtually overlaid networks. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) have been widely deployed to manipulate cloud security, with the latter providing additional prevention capabilities. This paper investigates into an OpenFlow and Snort based IPS called 'SnortFlow', in which it enables the cloud system to detect intrusions and deploy countermeasures by reconfiguring the cloud networking system on-the-fly. The evaluation results demonstrate the feasibility of SnortFlow and provide the guidance for the future work.

Original languageEnglish (US)
Title of host publicationProceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
Pages89-92
Number of pages4
DOIs
StatePublished - 2013
Event2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013 - Salt Lake City, UT, United States
Duration: Mar 20 2013Mar 22 2013

Publication series

NameProceedings - 2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013

Other

Other2013 2nd GENI Research and Educational Experiment Workshop, GREE 2013
CountryUnited States
CitySalt Lake City, UT
Period3/20/133/22/13

ASJC Scopus subject areas

  • Education

Fingerprint Dive into the research topics of 'SnortFlow: A OpenFlow-based intrusion prevention system in cloud environment'. Together they form a unique fingerprint.

Cite this