A Survey on Intrusion Detection Systems for Fog and Cloud Computing

Victor Chang,Paolo Modesti,Qianwen Ariel Xu,Lewis Golightly,Sreeja Boddu,Le Minh Thao Doan,Anna Kobusińska,Karl Hall

doi:10.3390/fi14030089

Victor Chang, Paolo Modesti + Show 6 more

Open Access

https://doi.org/10.3390/fi14030089

Copy DOI

Abstract

The rapid advancement of internet technologies has dramatically increased the number of connected devices. This has created a huge attack surface that requires the deployment of effective and practical countermeasures to protect network infrastructures from the harm that cyber-attacks can cause. Hence, there is an absolute need to differentiate boundaries in personal information and cloud and fog computing globally and the adoption of specific information security policies and regulations. The goal of the security policy and framework for cloud and fog computing is to protect the end-users and their information, reduce task-based operations, aid in compliance, and create standards for expected user actions, all of which are based on the use of established rules for cloud computing. Moreover, intrusion detection systems are widely adopted solutions to monitor and analyze network traffic and detect anomalies that can help identify ongoing adversarial activities, trigger alerts, and automatically block traffic from hostile sources. This survey paper analyzes factors, including the application of technologies and techniques, which can enable the deployment of security policy on fog and cloud computing successfully. The paper focuses on a Software-as-a-Service (SaaS) and intrusion detection, which provides an effective and resilient system structure for users and organizations. Our survey aims to provide a framework for a cloud and fog computing security policy, while addressing the required security tools, policies, and services, particularly for cloud and fog environments for organizational adoption. While developing the essential linkage between requirements, legal aspects, analyzing techniques and systems to reduce intrusion detection, we recommend the strategies for cloud and fog computing security policies. The paper develops structured guidelines for ways in which organizations can adopt and audit the security of their systems as security is an essential component of their systems and presents an agile current state-of-the-art review of intrusion detection systems and their principles. Functionalities and techniques for developing these defense mechanisms are considered, along with concrete products utilized in operational systems. Finally, we discuss evaluation criteria and open-ended challenges in this area.

Highlights

Introduction distributed under the terms andThe modern world has caused an absolute need for fast and efficient data
Intrusion detection systems can be considered as an extra layer of protection, implemented in either hardware or software or both, which integrates with all other measures enforced to protect an information system
intrusion detection system (IDS) security works in combination with endorsement access power and substantiation, which used a twofold line of resistance against intrusion as its measurement

Summary

Introduction

Introduction distributed under the terms andThe modern world has caused an absolute need for fast and efficient data. The stored information and data require security measures to protect them from unauthorized personnel. The computing services offered, including networking, servers, databases, software, and analytics intelligence, have been highlighted by the above service models’ assistance They offer more economies of scale, flexible resources, and rapid innovation in data encryption procedures. The mentioned software service models provide solutions that cloud computing technologies have been secured. Novel models of cloud computing allow to incorporate applications, platforms, and infrastructure that have previously been used to provide information technology solutions. These technological solutions are composed of all categories based on availability on the internet. Security issues are presented to be a critical matter when businesses start to outsource data and applications to cloud computing providers

Objectives

Methods

Findings

Conclusion