Detecting Intrusions in Federated Cloud Environments Using Security as a Service

摘要

Securing applications and services provided in the Cloud against cyber attacks is hard to achieve, due to the complexity, heterogeneity, and dynamic nature of such systems. Federated Cloud environments, and Cloud Service Providers will benefit significantly if there is a comprehensive intrusion detection methodology that evolves based on their requirements, i.e. nonintrusive and resilient. The cooperation of threat knowledge, both known and unknown threats among peers within enterprise networks or with other providers will contribute to better incident detection and prevention, enhancing Cloud security and providing faster and more effective incident response. Inter-Cloud communication allows on-demand reassignment of Cloud resources including compute, storage and network, and transfer of workload through interworking of multi-national and multi-operator Cloud systems. The flow of information across the Cloud systems could be used to help trace the source of attack, identify location, and limit attack vectors.