The convenience of emerging electronic commerce and mobile commerce has changed the customer behaviors. Online purchase has played an important role on consumer shopping. In the meantime, high profit businesses have become primary targets for attackers, so called target attacks or advanced persistent threat (APT) attacks. Attackers apply high technology skills to attack high valued organizations, such as electronic commerce services, high tech companies, and governments. To protect the security of the premise, businesses have deployed various defense mechanisms, such as firewall, anti-virus software, spam filter, and intrusion detection system. To detect targeted attacks, the intrusion detection system requires to analyze and correlate a vast amount of log files in a long time span from various defense systems. The traditional computation model, a single powerful machine, was not capable of processing such big amount of data in a timely manner. Distributed cloud computing could improve the data processing performance. There are three aspects which influence the performance of cloud computing platform: (1) the infrastructure, (2) virtual machine planning, and (3) the data analysis model. By applying the real business data, this study proposed a cloud computing platform for analyzing security data. The study gives a list of recommendation on resource allocation of virtual machine and the minimum infrastructure specification for businesses which plan to apply for cloud platform in an economic way.