Detecting the run time attacks in the cloud with an evidence collection based approach

Jie Lin; Chuanyi Liu; Zhichun Ning; Binxing Fang

doi:10.1109/CCIS.2014.7175790

Detecting the run time attacks in the cloud with an evidence collection based approach

Jie Lin
, Chuanyi Liu^*
, Zhichun Ning
, Binxing Fang

^*Corresponding author for this work

Beijing University of Posts and Telecommunications
Ministry of Education of the People's Republic of China

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

As the impacts of security threats are amplified and spread quickly in the cloud, especially with the attribute of large-scale virtualization. Most of researches focus on monitoring the network traffic. However, these methods don't check how the attack happened and what damage the attack caused for the virtual infrastructure. This paper presents a logging method to analyze the potential attacks out of VM and a prototype was implemented. The experimental results show that this method can detect the real world attacks effectively and the performance overhead is acceptable.

Original language	English
Title of host publication	CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems
Editors	Huadong Ma, Weining Wang, Yong Zhang
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	514-518
Number of pages	5
ISBN (Electronic)	9781479947201
DOIs	https://doi.org/10.1109/CCIS.2014.7175790
State	Published - 2014
Externally published	Yes
Event	3rd IEEE International Conference on Cloud Computing and Intelligence Systems, CCIS 2014 - Shenzhen, China Duration: 27 Nov 2014 → 29 Nov 2014

Publication series

Name	CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems

Conference

Conference	3rd IEEE International Conference on Cloud Computing and Intelligence Systems, CCIS 2014
Country/Territory	China
City	Shenzhen
Period	27/11/14 → 29/11/14

Keywords

Cloud
Control
Security
Virtual machine

Access to Document

10.1109/CCIS.2014.7175790

Cite this

Lin, J., Liu, C., Ning, Z., & Fang, B. (2014). Detecting the run time attacks in the cloud with an evidence collection based approach. In H. Ma, W. Wang, & Y. Zhang (Eds.), CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems (pp. 514-518). Article 7175790 (CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CCIS.2014.7175790

Lin, Jie ; Liu, Chuanyi ; Ning, Zhichun et al. / Detecting the run time attacks in the cloud with an evidence collection based approach. CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems. editor / Huadong Ma ; Weining Wang ; Yong Zhang. Institute of Electrical and Electronics Engineers Inc., 2014. pp. 514-518 (CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems).

@inproceedings{958446f7286d49ad9cd49295f7de884d,

title = "Detecting the run time attacks in the cloud with an evidence collection based approach",

abstract = "As the impacts of security threats are amplified and spread quickly in the cloud, especially with the attribute of large-scale virtualization. Most of researches focus on monitoring the network traffic. However, these methods don't check how the attack happened and what damage the attack caused for the virtual infrastructure. This paper presents a logging method to analyze the potential attacks out of VM and a prototype was implemented. The experimental results show that this method can detect the real world attacks effectively and the performance overhead is acceptable.",

keywords = "Cloud, Control, Security, Virtual machine",

author = "Jie Lin and Chuanyi Liu and Zhichun Ning and Binxing Fang",

note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 3rd IEEE International Conference on Cloud Computing and Intelligence Systems, CCIS 2014 ; Conference date: 27-11-2014 Through 29-11-2014",

year = "2014",

doi = "10.1109/CCIS.2014.7175790",

language = "英语",

series = "CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "514--518",

editor = "Huadong Ma and Weining Wang and Yong Zhang",

booktitle = "CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems",

address = "美国",

}

Lin, J, Liu, C, Ning, Z & Fang, B 2014, Detecting the run time attacks in the cloud with an evidence collection based approach. in H Ma, W Wang & Y Zhang (eds), CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems., 7175790, CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems, Institute of Electrical and Electronics Engineers Inc., pp. 514-518, 3rd IEEE International Conference on Cloud Computing and Intelligence Systems, CCIS 2014, Shenzhen, China, 27/11/14. https://doi.org/10.1109/CCIS.2014.7175790

Detecting the run time attacks in the cloud with an evidence collection based approach. / Lin, Jie; Liu, Chuanyi; Ning, Zhichun et al.
CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems. ed. / Huadong Ma; Weining Wang; Yong Zhang. Institute of Electrical and Electronics Engineers Inc., 2014. p. 514-518 7175790 (CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Detecting the run time attacks in the cloud with an evidence collection based approach

AU - Lin, Jie

AU - Liu, Chuanyi

AU - Ning, Zhichun

AU - Fang, Binxing

PY - 2014

Y1 - 2014

N2 - As the impacts of security threats are amplified and spread quickly in the cloud, especially with the attribute of large-scale virtualization. Most of researches focus on monitoring the network traffic. However, these methods don't check how the attack happened and what damage the attack caused for the virtual infrastructure. This paper presents a logging method to analyze the potential attacks out of VM and a prototype was implemented. The experimental results show that this method can detect the real world attacks effectively and the performance overhead is acceptable.

AB - As the impacts of security threats are amplified and spread quickly in the cloud, especially with the attribute of large-scale virtualization. Most of researches focus on monitoring the network traffic. However, these methods don't check how the attack happened and what damage the attack caused for the virtual infrastructure. This paper presents a logging method to analyze the potential attacks out of VM and a prototype was implemented. The experimental results show that this method can detect the real world attacks effectively and the performance overhead is acceptable.

KW - Cloud

KW - Control

KW - Security

KW - Virtual machine

UR - https://www.scopus.com/pages/publications/84988253974

U2 - 10.1109/CCIS.2014.7175790

DO - 10.1109/CCIS.2014.7175790

M3 - 会议稿件

AN - SCOPUS:84988253974

T3 - CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems

SP - 514

EP - 518

BT - CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems

A2 - Ma, Huadong

A2 - Wang, Weining

A2 - Zhang, Yong

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 3rd IEEE International Conference on Cloud Computing and Intelligence Systems, CCIS 2014

Y2 - 27 November 2014 through 29 November 2014

ER -

Lin J, Liu C, Ning Z, Fang B. Detecting the run time attacks in the cloud with an evidence collection based approach. In Ma H, Wang W, Zhang Y, editors, CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems. Institute of Electrical and Electronics Engineers Inc. 2014. p. 514-518. 7175790. (CCIS 2014 - Proceedings of 2014 IEEE 3rd International Conference on Cloud Computing and Intelligence Systems). doi: 10.1109/CCIS.2014.7175790

Detecting the run time attacks in the cloud with an evidence collection based approach

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this