NICE-D: A Modified Approach for Cloud Security
Journal: International Journal of Science and Research (IJSR) (Vol.3, No. 12)Publication Date: 2014-12-05
Authors : Nikita T. Ramteke; Yashwant V. Chavan;
Page : 1209-1212
Keywords : DDos; Iaas; NICE; SNORT;
Abstract
Cloud security is one of most important issues that have attracted a lot of research and development effort in past few years. Particularly, attackers can explore vulnerabilities of a cloud system and compromise virtual machines to deploy further large-scale Distributed Denial-of-Service (DDoS). Within the cloud system, especially the Infrastructure-as-a-Service (IaaS) clouds, the detection of zombie exploration attacks is extremely difficult. This is because cloud users may install vulnerable applications on their virtual machines. To prevent vulnerable virtual machines from being compromised in the cloud, we propose a multi-phase distributed vulnerability detection, measurement, and countermeasure selection mechanism called NICE [1], which is built on attack graph based analytical models and reconfigurable virtual network-based countermeasures. The proposed framework leverages Open Flow network programming APIs to build a monitor and control plane over distributed programmable virtual switches in order to significantly improve attack detection and mitigate attack consequences. Existing NICE model uses signature based IDS i. e. SNORT [1], In this project work we improved the intrusion detection accuracy of NICE by using dynamic intrusion detection system (NICE-D). Dynamic IDS monitors the incoming traffic flow and anomalous time slot, and accordingly generates the new signature to identify the future intrusions over cloud system. The system and security evaluations demonstrate the efficiency and effectiveness of the proposed solution.
Other Latest Articles
- Privacy-Preserving Public Auditing for Secure Cloud Storage using ElGamal Public Key Encryption Algorithm
- Comparative Study of High Density Salt and Pepper Noise Removal (Spatial Domain Methods used in Image Processing)
- Break The Searching Limits of God's Existence (A Study of the Debate About the Existence of God in Islamic Theology)
- Outlier Detection Based on Surfeit Entropy for Large Scale Categorical Data Set
- Wireless Communication through Near Field&its Security
Last modified: 2021-06-30 21:15:01