Detection of Network Infiltration and Countermeasure Selection in Virtual Network Systems

Cloud computing is one of the fastest growing emerging technology. Users are rapidly migrating to the cloud services. Among the services, Infrastructure-as-a-Service (IaaS) is the service which allows users to deploy their softwares. Cloud security is one of most important issues that have attracted a lot of research and development effort in past few years. This is because cloud users may install vulnerable applications on their virtual machines. Particularly, attackers can explore vulnerabilities of a cloud system and compromise virtual machines to deploy further large-scale Distributed Denial-of-Service (DDoS). DDoS attacks usually involve early stage actions such as multi-step exploitation, low frequency vulnerability scanning, and compromising identified vulnerable virtual machines as zombies, and finally DDoS attacks through the compromised zombies. In this paper we have proposed a system to prevent vulnerable virtual machines from being compromised in the cloud called DNIS. The system exploits multi-phase distributed vulnerability detection, measurement, and countermeasure selection mechanism.