Internal Cloud Data Firewall (ICD-Firewall)

Abstract

Cloud computing has become increasingly popular as the next infrastructure for deploying software and services. Despite the benefits at hand, Cloud data is an important form of cloud computing, Cloud has composed types of cloud attacks many existing and new, so network security of data center is also very important. To protect cloud data centers from these attacks, establishing a cloud firewall is an effective and necessary choice. Traditional firewalls are the first line when defending against malicious traffic. However, the diversity of cloud services and complex attacks make traditional packet level firewalls unsuitable for cloud platform, as typically they are deployed for a local area network which hosts relatively simple and limited services. Addition to the cloud as any web application, the available method doesn’t concentrate on this type of attack especially when be internally. This thesis presents implementation of internal cloud data firewall to protect specific script in the web server at the datacenter, through hidden algorithms for sensitive data on (config.file), which is the most significant goal for all type of attacks. ICD-Firewall system is designed to be compatible, simple and more secure. Some useful implications obtained from this system include data integrity, data intrusion from external and internal attack. The security level can be increased with huge number of firewall tables count and size, and insert lines of code to the algorithm to be more complicated, the generation value will be more intruded ,beside of misunderstanding by hackers, so more efficient .Also can increase security level with prevent from script code injection threat.