A Framework for Detecting Malware in Cloud by Identifying Symptoms

Harrison, K. J.; Bordbar, Behzad; Ali, Syed Taqi; Dalton, Chris; Norman, A.

doi:10.1109/edoc.2012.27

Cited by 30 publications

(4 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For that, the analysis based on the type of attack is necessary i.e, for each type of attack we have to follow a particular set of steps to mitigate the probability of execution in the client machine. [23][24] [25][26] a. SYN ood attack SYN ood attacks can be prevented only by certain rewall ltering policies. Most of the SYN attacks ltering is an easy process since they will have the TCP header parameters which is common.…”

Section: Mitigation Of Ddos Attackmentioning

confidence: 99%

Impact of AAB-DDoS Attacks in a Real-Time Cloud Environment and the Mitigation Strategies

John

Singh

2023

Preprint

View full text Add to dashboard Cite

Assaults on the resources of these services, known as distributed denial of service (DDoS) attacks, pose a serious risk in a cloud context because they prevent the network infrastructure from being used to its full potential. DDoS has become into a significant problem for retailers like AMAZON, GOOGLE, etc. In this work, an analysis is done using an agent-based system (AAB) of various sorts that is 80% successful in the cloud and simulates DDoS attacks in a real-time cloud environment (in-house). The SYN flood attack, UDP flood attack, TCP flood attack, and ICMP flood attack have all been recognized as major DDoS attacks. Comparison and analysis are done regarding how these attacks affect the real-time cloud. Additionally, a mitigation strategy to stop it is suggested that can lower 45% of the attack in a real time cloud environment.

show abstract

Section: Mitigation Of Ddos Attackmentioning

confidence: 99%

Impact of AAB-DDoS Attacks in a Real-Time Cloud Environment and the Mitigation Strategies

John

Singh

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…FVMs are typically autonomous simplified VMs with limited computability and communication. This concept was more formally defined in the context of Cloud security in [16,17], where a mobility algorithm was defined for the general purpose of searching for symptoms and discovering their dangerous configurations. The mobility algorithm has become an important tool for cloud monitoring providing light way security, though it is difficult to analyze due to its complexity including security aspects.…”

Section: Previous Workmentioning

confidence: 99%

An efficient algorithm for monitoring virtual machines in clouds

Alshamrani

2019

Bulletin EEI

View full text Add to dashboard Cite

Cloud computing systems consist of a pool of Virtual Machines (VMs), which are installed physically on the provider's set up. The main aim of the VMs is to offer the service to the end users. With the current increasing demand for the cloud VMs, there is always a huge requirement to secure the cloud systems. To keep these cloud systems secured, they need a continuous and a proper monitoring. For the purpose of monitoring, several algorithms are available with FVMs. FVM is a forensic virtual machine which monitors the threats among the VMs. Our formulated algorithm runs on FVM. In this paper, we formulate the Random-Start-Round-Robin algorithm for monitoring inside FVM.

show abstract

“…Researchers are providing new techniques to counter the malware attacks [1], [2], [3], [4]; the more sophisticated malicious code is getting by using polymorphism (different encryptions of the same binary), metamorphism (different code for the same functionality), rootkit technology (enable administrator-level access) etc.…”

Section: Related Workmentioning

confidence: 99%

Secure virtualised environment

Chouhan

Sezer

Choi

et al. 2014

The 9th International Conference for Internet Technology and Secured Transactions (ICITST-2014)

View full text Add to dashboard Cite

Cloud computing is a technological advancement that provide resources through internet on pay-as-you-go basis. Cloud computing uses virtualisation technology to enhance the efficiency and effectiveness of its advantages. Virtualisation is the key to consolidate the computing resources to run multiple instances on each hardware, increasing the utilization rate of every resource, thus reduces the number of resources needed to buy, rack, power, cool, and manage. Cloud computing has very appealing features, however, lots of enterprises and users are still reluctant to move into cloud due to serious security concerns related to virtualisation layer. Thus, it is foremost important to secure the virtual environment. In this paper, we present an elastic framework to secure virtualised environment for trusted cloud computing called Server Virtualisation Security System (SVSS). SVSS provide security solutions located on hypervisor for Virtual Machines by deploying malicious activity detection techniques, network traffic analysis techniques, and system resource utilization analysis techniques. SVSS consists of four modules: Anti-Virus Control Module, Traffic Behavior Monitoring Module, Malicious Activity Detection Module and Virtualisation Security Management Module.A SVSS prototype has been deployed to validate its feasibility, efficiency and accuracy on Xen virtualised environment.

show abstract

A Framework for Detecting Malware in Cloud by Identifying Symptoms

Cited by 30 publications

References 10 publications

Impact of AAB-DDoS Attacks in a Real-Time Cloud Environment and the Mitigation Strategies

Impact of AAB-DDoS Attacks in a Real-Time Cloud Environment and the Mitigation Strategies

An efficient algorithm for monitoring virtual machines in clouds

Secure virtualised environment

Contact Info

Product

Resources

About