Institute of Electrical & Electronic Engineers
The cloud computing paradigm, with virtualization as key enabling technology, is constantly gaining in popularity. However, the wide migration to cloud systems is challenged by security concerns. A common defensive instrument against security threats are Intrusion Detection Systems (IDSes). The IDSes for cloud platforms are usually deployed in the virtualization layer, i.e., in a Virtual Machine Monitor (VMM). The authors refer to such IDSes as VMM-based IDSes. To minimize the risk of security breaches, reliable methods and techniques for evaluating the performance of IDSes are needed. Lack of in-depth IDS evaluations can lead to deployment of an IDS which does not operate optimally in a given environment.