Cloud computing and network analysis

Abstract

Today, the demand for security infrastructure is focused on perimeter defenses, for example, firewalls, proxies, IPS and content filtering. The idea associated with cloud computing has dramatically changed from the last-mentioned concepts, due to new ideas associated with the implementation of corporate IT services over the Internet. The virtualized applications running on leased servers and accepting network connections are denominated cloud services. Cloud services classify in publics and privates, although it exists another type known as hybrid clouds, which is mixed of the before mentioned ideas. On these days, a very important paradigm is how to delivery security services that satisfy the requirements of all corporate users. Therefore, the principal service analyzed in this paper is the security as a service known as SECaaS. The importance of the before mentioned concept is the possibility to analyze contents in a controlled environment, where policies forbid the execution of files with super user privileges and the contents are well verified. Finally, the importance of this paper is focused in the necessity of the optimal distribution of security infrastructure, deployed as cloud services, which simplify and accelerate the detection of compromised endpoints based on generated traffic logs analysis or user behaviors.