A novel workload scheduling framework for intrusion detection system in NFV scenario. Issue 106 (July 2021)
- Record Type:
- Journal Article
- Title:
- A novel workload scheduling framework for intrusion detection system in NFV scenario. Issue 106 (July 2021)
- Main Title:
- A novel workload scheduling framework for intrusion detection system in NFV scenario
- Authors:
- Li, Chenxi
Li, Jia
Yang, Jiahai
Lin, Jinlei - Abstract:
- Abstract: Compared with traditional Intrusion Detection System (IDS) solutions, deploying IDS in Network Function Virtualization (NFV) environment can have better scalability and flexibility. Existing research works in this area do not consider many IDS features to design IDS-specific workload scheduling approaches. Thus, there is space further to promote the performance of IDS deployment in the NFV scenario. In this paper, we find some critical IDS features by analyzing packet processing procedures, software implementation, and rulesets of typical IDS. Combining these features with the flexibility of NFV, we propose a novel workload scheduling framework for IDS deployment in the NFV scenario. Our framework contains two parts: 1) a novel protocol & destination port based traffic migration strategy which can promote the detection performance and reduce the memory usage compared with the traditional 5-tuple hash based strategy; 2) an auto-configuration algorithm to find a better-than-default configuration for each Virtual Network Function (VNF) instance. We evaluate our framework with real network traffic and benchmark traffic datasets for IDS. Experimental results show that our framework can always have better detection performance and lower memory usage than the 5-tuple hash based migration strategy and the default configuration.
- Is Part Of:
- Computers & security. Issue 106(2021)
- Journal:
- Computers & security
- Issue:
- Issue 106(2021)
- Issue Display:
- Volume 106, Issue 106 (2021)
- Year:
- 2021
- Volume:
- 106
- Issue:
- 106
- Issue Sort Value:
- 2021-0106-0106-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-07
- Subjects:
- IDS -- NFV -- Workload scheduling framework -- Migration strategy -- Auto-configuration algorithm
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2021.102271 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 17109.xml