Name
Title | ||
|---|---|---|
A fuzzy-based dynamic provision approach for virtualized network intrusion detection systems |
Abstract | ||
|---|---|---|
With the increasing prevalence of virtualization and cloud technologies, virtual security appliances have emerged and become a new way for traditional security appliances to be rapidly distributed and deployed in IT infrastructure. However, virtual security appliances are challenged with achieving optimal performance, as the physical resource is shared by several virtual machines, and this issue is aggravated when virtualizing network intrusion detection systems (NIDS). In this paper, we proposed a novel approach named fuzzyVIDS, which enables dynamic resource provision for NIDS virtual appliance. In fuzzyVIDS, we use fuzzy model to characterize the complex relationship between performance and resource demands and we develop an online fuzzy controller to adaptively control the resource allocation for NIDS under varying network traffic. Our approach has been successfully implemented in the iVIC platform. Finally, we evaluate our approach by comprehensive experiments based on Xen hypervisor and Snort NIDS and the results show that the proposed fuzzy control system can precisely allocate resources for NIDS according to its resource demands, while still satisfying the performance requirements of NIDS. |
Year | DOI | Venue |
|---|---|---|
2010 | 10.1007/978-3-642-13577-4_10 | AST/UCMA/ISA/ACN |
Keywords | Field | DocType |
fuzzy model,novel approach,resource allocation,virtual security appliance,virtualized network intrusion detection,virtual machine,snort nids,nids virtual appliance,fuzzy-based dynamic provision approach,physical resource,resource demand,dynamic resource provision,fuzzy control,virtualization,adaptive control,satisfiability,intrusion detection system | Virtualization,Virtual machine,Fuzzy logic,Computer network,Hypervisor,Virtual appliance,Resource allocation,Engineering,Fuzzy control system,Cloud computing | Conference |
Volume | ISSN | ISBN |
6059 | 0302-9743 | 3-642-13576-5 |
Citations | PageRank | References |
1 | 0.37 | 9 |
Authors | ||
6 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Baochun Li | 1 | 9416 | 614.20 |
| Jianxin Li | 2 | 725 | 92.14 |
| Tianyu Wo | 3 | 666 | 50.46 |
| Xudong Wu | 4 | 1 | 0.37 |
| Junaid Arshad | 5 | 51 | 11.27 |
| Wantao Liu | 6 | 73 | 8.29 |