The technology of cloud computing has received the attention of academia and industry in the development of the last ten years, but the security problem restricts its development. Towards the security issues faced by the cloud, the cloud often use a variety of security means the combination of solutions to ensure its security. In these security measures, intrusion detection system (IDS) is an important and indispensable link in cloud security solutions. In this paper, towards to the cloud platform which used software deifned network (SDN), and the intrusion detection system deployed on it. We analysis the issues the IDS faced and conclude the correspond solutions, put forward the design goal of the IDS, and designed a software deifned IDS based on SDN. The system has robustness, it can save the cloud resource consumption, and after the virtual machine migration, it's still under the protection of the IDS, ifnally realize the important modules of the system.%云计算技术在近十年的发展中得到了学术界与产业界的广泛关注,其安全问题制约着云计算技术的发展,针对云中所面临的安全问题,往往采用多种安全手段结合的解决方案来保障其安全.在这些安全手段中,入侵检测是云安全解决方案中不可缺少的重要环节.文章针对使用软件定义网络(software defined network,SDN)技术的云平台,分析总结了入侵检测系统在云上部署时所面临的问题和对应的解决方案,提出了入侵检测系统的设计目标.同时基于SDN思想,设计了一个软件定义的入侵检测系统,该系统具有鲁棒性,可以降低云中的资源消耗,还能在虚拟机迁移后,使其依然处于系统的保护之下.
展开▼
