MULTI-LEVEL INTRUSION DETECTION AND LOG MANAGEMENT SYSTEM IN CLOUD COMPUTING

MULTI-LEVEL INTRUSION DETECTION AND LOG MANAGEMENT SYSTEM IN CLOUD COMPUTING

---

INTRODUCTION

As Green IT has been issued, many companies have started to find ways to decrease IT cost and overcome economic recession. Cloud Computing service is a new computing paradigm in which people only need to pay for use of services without cost of purchasing physical hardware. For this reason, Cloud Computing has been rapidly developed along with the trend of IT services. It is efficient and cost economical for consumers to use computing resources as much as they need or use services they want from Cloud Computing provider. Especially, Cloud Computing has been recently more spotlighted than other computing services because of its capacity of providing unlimited amount of resources. Moreover, consumers can use the services wherever Internet access is possible, so Cloud Computing is excellent in the aspect of accessibility. Cloud Computing systems have a lot of resources and private information, therefore they are easily threatened by attackers. Especially, System administrators potentially can become attackers. Therefore, Cloud Computing providers must protect the systems safely against both insiders and outsiders. IDSs are one of the most popular devices for protecting Cloud Computing systems from various types of attack. Because an IDS observes the traffic from each VM and generates alert logs, it can manage Cloud Computing globally. Another important problem is log management. Cloud Computing systems are used by many people, therefore, they generate huge amount of logs. So, system administrators should decide to which log should be analysed first.

Cloud Computing is a fused-type computing paradigm which includes Virtualization, Grid Computing, Utility Computing, Server Based Computing(SBC), and Network Computing, rather than an entirely new type of computing technique. Cloud computing has evolved through a number of implementations. Moving data into the cloud provides great convenience to users. Cloud computing is a collection of all resources to enable resource sharing in terms of scalable infrastructures, middleware and application development platforms, and value-added business applications. The characteristics of cloud computing includes: virtual, scalable, efficient, and flexible. In cloud computing, three kinds of services are provided: Software as a Service (SaaS) systems, Infrastructure as a Service (IaaS) providers, and Platform as a Service (PaaS). In SaaS, systems offer complete online applications that can be directly executed by their users; In IaaS, providers allow their customers to have access to entire virtual machines; and in SaaS, it offers development and deployment tools, languages and APIs used to build, deploy and run applications in the cloud.

A cloud is subject to several accidental and intentional security threats, including threats to the integrity, confidentiality and availability of its resources, data and infrastructure. Also, when a cloud with large computingpower and storage capacity is misused by an ill-intentioned party for malicious purposes, the cloud itself is a threat against society. Intentional threats are imposed by insiders and external intruders. Insiders are legitimate cloud users who abuse their privileges by using the cloud for unintended purposes and we consider this intrusive behaviour to be detected. An intrusion consists of an attack exploiting a security flaw and a consequent breach which is the resulting violation of the explicit or implicit security policy of the system. Although an intrusion connotes a successful attack, IDSs also try to identify attacks that don't lead to compromises. Attacks and intrusions‖ are commonly considered synonyms in the intrusion detection context. The underlying network infrastructure of a cloud, being an important component of the computing environment, can be the object of an attack. Grid and cloud applications running on compromised hosts are also a security concern. We consider attacks against any network or host participating in a cloud as attacks against that, since they may directly or indirectly affect its security aspects. Cloud systems are susceptible to all typical network and computer security attacks, plus specific means of attack because of their new protocols and services.

BUY THIS TOPIC ON WHATSAPP

Related Project Materials

EVALUATING THE INFLUENCE OF STUDENTS ATTITUDINAL BEHAVIOUR TOWARDS EXAMINATION MALPRACTICE ON THEIR ACADEMIC PERFORMANCE

Abstract

The major aim of this project was to carry out an investigation into the influence of students’ attitudinal behaviours tow...

Read more

A CRITICAL ANALYSIS OF THREAT: A CASE STUDY OF ASARI DOKUBO’S UTTERANCES

BACKGROUND OF THE STUDY

Conversation analysis is a broad phrase for the several traditions that may be...

Read more

THE IMPACT OF THE UNITED STATES INVASION OF IRAQ IN 2003 ON THE SOVEREIGNTY OF IRAQ

ABSTRACT

Since the evolution of modern state sovereignty donates the final authority of the state over...

Read more

A COMPARATIVE STUDY OF THE ACADEMIC PERFORMANCE OF SECONDARY SCHOOL STUDENTS IN WASSCE AND NECO EXAMINATIONS

ABSTRACT

This work made a Comparative study of Students‟ Performance in WAEC and NECO in Imo state, Nigeria (2011-2015). It comparatively...

Read more

THE MIND OF CHRIST: A PARADIGM TOWARD A BIBLICAL THEOLOGY OF TRANSFORMATIONAL AND PROACTIVE RESPONSES TO VIOLENCE

ABSTRACT

Christianity seems to be losing focus on violence and the Christian response. Therefore, this work sought for responses to viole...

Read more

THE ROLE OF NIGERIAN INSURANCE INDUSTRY IN THE PROMOTION OF CAPITAL MARKET SERVICES

ABSTRACT

This project is one the topic titled “The Role of Nigerian Insurance Industry in the Promotion of Central...

Read more

THE IMPACT OF HEALTH CARE INSURANCE PLANS

ABSTRACT

This study was carried out to examine the impact of health care insurance plans in Nigeria using L...

Read more

Witnessing Control Flow Graph Optimizations

ABSTRACT

Proving the correctness of a program transformation, and specifically, of a compiler optimization, is a long-standing research p...

Read more

INFLUENCE OF INADEQUATE INFORMATION TECHNOLOGY ON ACADEMIC PERFORMANCE OF OTM STUDENTS (A CASE STUDY OF FEDERAL POLYTECHNIC, EDE)

This study was carried out to examine the influence of inadequate information technology on academic performance of OTM students using  Federa...

Read more

ROLE OF INFORMAL SECTOR IN EMPLOYMENT GENERATION IN NIGERIA

Abstract

This study examines the impact of informal sector on employment generation in Nigeria during t...

Read more

Share this page with your friends