Verification for Security Monitoring SLAs in IaaS Clouds: the Example of a Network IDS

Amir Teshome Wonjiga 1 Louis Rilling 1 Christine Morin 1
1 MYRIADS - Design and Implementation of Autonomous Distributed Systems
Inria Rennes – Bretagne Atlantique , IRISA_D1 - SYSTÈMES LARGE ÉCHELLE
Abstract : In an IaaS cloud the physical infrastructure is controlled by service providers, including its security monitoring aspect. Clients hosting their information system are incited to trust the provider's claim (e.g. infrastructure availability) thanks to the assurance given by Service Level Agreements (SLAs). We aim at extending SLAs to include security monitoring terms. In this paper we describe the challenges to reach this goal, we propose a three-step incremental strategy and we apply the first step of this strategy on the case of network IDS (NIDS) monitoring probes. In this case study we select a relevant metric to describe the performance of an NIDS, that is the metric can figure in an SLA and can be measured to verify that the SLA is respected. In particular we propose an in situ verification method of such a metric on a production NIDS and evaluate experimentally and analytically the proposed method.
Type de document :
Communication dans un congrès
NOMS 2018 - Network Operations and Management Symposium, Apr 2018, Taipei, Taiwan. IEEE, pp.1-7, 〈http://noms2018.ieee-noms.org/〉. 〈10.1109/NOMS.2018.8406157〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01663941
Contributeur : Amir Teshome Wonjiga <>
Soumis le : jeudi 14 décembre 2017 - 13:30:15
Dernière modification le : jeudi 15 novembre 2018 - 11:58:57

Identifiants

Citation

Amir Teshome Wonjiga, Louis Rilling, Christine Morin. Verification for Security Monitoring SLAs in IaaS Clouds: the Example of a Network IDS. NOMS 2018 - Network Operations and Management Symposium, Apr 2018, Taipei, Taiwan. IEEE, pp.1-7, 〈http://noms2018.ieee-noms.org/〉. 〈10.1109/NOMS.2018.8406157〉. 〈hal-01663941〉

Partager

Métriques

Consultations de la notice

269