Securing Infrastructure-as-a-Service Public Clouds Using Security Onion

摘要

The shift to Cloud computing has brought with it its specific security challenges concerningthe loss of control, trust and multi-tenancy especially in Infrastructure-as-a-Service (IaaS) Cloudmodel. This article focuses on the design and development of an intrusion detection system (IDS) thatcan handle security challenges in IaaS Cloud model using an open source IDS. We have implementeda proof-of-concept prototype on the most deployed hypervisor—VMware ESXi—and performedvarious real-world cyber-attacks, such as port scanning and denial of service (DoS) attacks to validatethe practicality and effectiveness of our proposed IDS architecture. Based on our experimental resultswe found that our Security Onion-based IDS can provide the required protection in a reasonable andeffective manner.