Network Intrusion Detection in Virtual Network Systems and Countermeasure Selection (NIDCS)

Cloud computing provides shared resources to various cloud users. All the users share various computing resources e.g., being connected through the same switch, sharing the same data storage and the file systems. Hence the cloud security is the major concern in the cloud computing and has attracted lot of research activities. The most common issue with the cloud computing is the Distributed-Denial-of-Service (DDoS) attacks. The DDoS attacks involve actions such as multistep exploitation and compromising identified vulnerable virtual machines as zombies. In the Infrastructure-as-a-service (IaaS) model, the detection of zombie virtual machines is difficult as the user may install vulnerable applications in their own Virtual machines. To detect and prevent the virtual machines from becoming zombie, we propose Defense-in-depth intrusion detection framework called NIDCS, which is an attack graph based analytical model.