Towards Benchmarking Intrusion Detection Systems for Virtualized Cloud Environments
The cloud computing paradigm, with virtualization as key enabling technology, is constantly gaining in popularity. However, the wide migration to cloud systems is challenged by security concerns. A common defensive instrument against security threats are Intrusion Detection Systems (IDSes). The IDSes for cloud platforms are usually deployed in the virtualization layer, i.e., in a Virtual Machine Monitor (VMM). The authors refer to such IDSes as VMM-based IDSes. To minimize the risk of security breaches, reliable methods and techniques for evaluating the performance of IDSes are needed. Lack of in-depth IDS evaluations can lead to deployment of an IDS which does not operate optimally in a given environment.