An intrusion detection and prevention system in cloud computing: A systematic review
The distributed and open structure of cloud computing and services becomes an attractive target for potential cyber-attacks by intruders. The traditional Intrusion Detection and Prevention Systems (IDPS) are largely inefficient to be deployed in cloud computing environments due to their openness and specific essence. This paper surveys, explores and informs researchers about the latest developed IDPSs and alarm management techniques by providing a comprehensive taxonomy and investigating possible solutions to detect and prevent intrusions in cloud computing systems. Considering the desired characteristics of IDPS and cloud computing systems, a list of germane requirements is identified and four concepts of autonomic computing self-management, ontology, risk management, and fuzzy theory are leveraged to satisfy these requirements. âº Up-to-date systematic review of IDPS for cloud computing environments. âº Provides an appropriate set of all possible solutions and a layered taxonomy of IDPS. âº Based on the characteristics of cloud computing and IDPS, a list of requirements is provided. âº Autonomic computing, ontology, risk management and fuzzy logic are proposed to develop Cloud IDPS.