Volume 12 Number 1 (Jan. 2017)
Home > Archive > 2017 > Volume 12 Number 1 (Jan. 2017) >
JCP 2017 Vol.12(1): 28-47 ISSN: 1796-203X
doi: 10.17706/jcp.12.1.28-47

A Collaborative Load Balancer for Network Intrusion Detection in Cloud Environments

Taha Arian, Amir Kusedghi, Bijan Raahemi, Ahmad Akbari
1School of Computer Engineering Iran University of Science and Technology, Tehran, Iran.
2University of Ottawa, Ottawa, Canada.


Abstract—Information security and permeability in the system is a major concern for cloud computing. Cloud service providers should ensure that user information remains private from other people (external or internal). Deployment of an intrusion detection system (IDS) is a technique to protect the cloud from existing security and intrusion threats. Due to the high traffic volume and the need for flexibility and the diversity of applications in a cloud environment, a distributed IDS is used to apply traffic management, and provide scalability concurrently. The challenge is to propose a method of load balancing that distributes input traffic among IDS sensors, and optimally balance the workload on the sensors, to improve the overall performance of the IDS, with minimum degradation in quality. In this paper, a load balancing method is presented which operates based on the sensors’ hardware specification and their compatibility with incoming requests, and the sensors' available resources. Dynamic request allocation to sensors is done in real time, using application layer load distribution, with no need to migrate requests or sensors, which could lead to extra overhead. The accuracy of IDS sensors in detection of attacks can be affected by the distribution of input traffic, but this shortcoming is resolved by our method. We compare the proposed method with existing algorithms in terms of load balancing and IDS functionality. The results confirm superior performance of IDS functionality in the proposed architecture.

Index Terms—Cloud computing, distributed intrusion detection system, adaptive weighted load balancing.

[PDF]

Cite: Taha Arian, Amir Kusedghi, Bijan Raahemi, Ahmad Akbari, "A Collaborative Load Balancer for Network Intrusion Detection in Cloud Environments," Journal of Computers vol. 12, no. 1, pp. 28-47, 2017.

General Information

ISSN: 1796-203X
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO,  ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat,etc
E-mail: jcp@iap.org
  • Nov 14, 2019 News!

    Vol 14, No 11 has been published with online version   [Click]

  • Mar 20, 2020 News!

    Vol 15, No 2 has been published with online version   [Click]

  • Dec 16, 2019 News!

    Vol 14, No 12 has been published with online version   [Click]

  • Sep 16, 2019 News!

    Vol 14, No 9 has been published with online version   [Click]

  • Aug 16, 2019 News!

    Vol 14, No 8 has been published with online version   [Click]

  • Read more>>