A general cloud firewall framework with dynamic resource allocation

Shui Yu, Robin Doss, Wanlei Zhou, Song Guo

Research output: Chapter in book / Conference proceedingConference article published in proceeding or bookAcademic researchpeer-review

23 Citations (Scopus)


Cloud is becoming a dominant computing platform. However, we see few work on how to protect cloud data centers. As a cloud usually hosts many different type of applications, the traditional packet level firewall mechanism is not suitable for cloud platforms in case of complex attacks. It is necessary to perform anomaly detection at the event level. Moreover, protecting objects are more diverse than the traditional firewall. Motivated by this, we propose a general framework of cloud firewall, which features event level detection chain with dynamic resource allocation. We establish a mathematical model for the proposed framework. Moreover, a linear resource investment function is proposed for economical dynamical resource allocation for cloud firewalls. A few conclusions have been extracted for the reference of cloud service providers and designers.
Original languageEnglish
Title of host publication2013 IEEE International Conference on Communications, ICC 2013
Number of pages5
ISBN (Print)9781467331227
Publication statusPublished - 1 Jan 2013
Externally publishedYes
Event2013 IEEE International Conference on Communications, ICC 2013 - Budapest, Hungary
Duration: 9 Jun 201313 Jun 2013


Conference2013 IEEE International Conference on Communications, ICC 2013


  • Anomaly detection
  • cloud firewall
  • resource investment

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Cite this