Volume 12 Number 1 (Jan. 2017)
Home > Archive > 2017 > Volume 12 Number 1 (Jan. 2017) >
JCP 2017 Vol.12(1): 28-47 ISSN: 1796-203X
doi: 10.17706/jcp.12.1.28-47

A Collaborative Load Balancer for Network Intrusion Detection in Cloud Environments

Taha Arian, Amir Kusedghi, Bijan Raahemi, Ahmad Akbari
1School of Computer Engineering Iran University of Science and Technology, Tehran, Iran.
2University of Ottawa, Ottawa, Canada.


Abstract—Information security and permeability in the system is a major concern for cloud computing. Cloud service providers should ensure that user information remains private from other people (external or internal). Deployment of an intrusion detection system (IDS) is a technique to protect the cloud from existing security and intrusion threats. Due to the high traffic volume and the need for flexibility and the diversity of applications in a cloud environment, a distributed IDS is used to apply traffic management, and provide scalability concurrently. The challenge is to propose a method of load balancing that distributes input traffic among IDS sensors, and optimally balance the workload on the sensors, to improve the overall performance of the IDS, with minimum degradation in quality. In this paper, a load balancing method is presented which operates based on the sensors’ hardware specification and their compatibility with incoming requests, and the sensors' available resources. Dynamic request allocation to sensors is done in real time, using application layer load distribution, with no need to migrate requests or sensors, which could lead to extra overhead. The accuracy of IDS sensors in detection of attacks can be affected by the distribution of input traffic, but this shortcoming is resolved by our method. We compare the proposed method with existing algorithms in terms of load balancing and IDS functionality. The results confirm superior performance of IDS functionality in the proposed architecture.

Index Terms—Cloud computing, distributed intrusion detection system, adaptive weighted load balancing.

[PDF]

Cite: Taha Arian, Amir Kusedghi, Bijan Raahemi, Ahmad Akbari, "A Collaborative Load Balancer for Network Intrusion Detection in Cloud Environments," Journal of Computers vol. 12, no. 1, pp. 28-47, 2017.

General Information

ISSN: 1796-203X
Frequency: Monthly (2006-2014); Bimonthly (Since 2015)
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO, DOAJ, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat, CNKI,etc
E-mail: jcp@iap.org
  • Sep 26, 2017 News!

    Papers published in JCP Volume 12 have all been indexed by DBLP   [Click]

  • Sep 02, 2016 News!

    Vol 11, No 3 has been indexed by EI (Inspec)   [Click]

  • Sep 22, 2017 News!

    Vol 13, No 6 has been published with online version 11 papers are published in this issue after peer review   [Click]

  • Aug 14, 2017 News!

    Vol 13, No 5 has been published with online version   [Click]

  • Jun 21, 2017 News!

    Vol 13, No 4 has been published with online version   [Click]

  • Read more>>