A distributed intrusion detection scheme for cloud computing
Intrusion detection systems (IDS) is an important security measure used to secure cloud resources, however, IDS often suffer from poor detection accuracy due to coordinated attacks such as a DDoS. Various research on distributed IDSs have been proposed to detect DDoS however, the limitations of thes...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Published: |
IGI Global
2020
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/90937/ http://dx.doi.org/10.4018/IJDST.2020010106 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Teknologi Malaysia |
| id |
my.utm.90937 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.909372021-05-31T13:41:12Z http://eprints.utm.my/id/eprint/90937/ A distributed intrusion detection scheme for cloud computing Ibrahim, Nurudeen Mahmud Zainal, Anazida QA75 Electronic computers. Computer science Intrusion detection systems (IDS) is an important security measure used to secure cloud resources, however, IDS often suffer from poor detection accuracy due to coordinated attacks such as a DDoS. Various research on distributed IDSs have been proposed to detect DDoS however, the limitations of these works the lack of technique to determine an appropriate period to share attack information among nodes in the distributed IDS. Therefore, this article proposes a distributed IDS that uses a binary segmentation change point detection algorithm to address the appropriate period to send attack information to nodes in distributed IDS and using parallel Stochastic Gradient Descent with Support Vector Machine (SGD-SVM) to achieve the distributed detection. The result of the proposed scheme was implemented in Apache Spark using NSL-KDD benchmark intrusion detection dataset. Experimental results show that the proposed distributed intrusion detection scheme outperforms existing distributed IDS for cloud computing. IGI Global 2020-01 Article PeerReviewed Ibrahim, Nurudeen Mahmud and Zainal, Anazida (2020) A distributed intrusion detection scheme for cloud computing. International Journal of Distributed Systems and Technologies, 11 (1). pp. 68-82. ISSN 1947-3532 http://dx.doi.org/10.4018/IJDST.2020010106 DOI:10.4018/IJDST.2020010106 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| topic |
QA75 Electronic computers. Computer science |
| spellingShingle |
QA75 Electronic computers. Computer science Ibrahim, Nurudeen Mahmud Zainal, Anazida A distributed intrusion detection scheme for cloud computing |
| description |
Intrusion detection systems (IDS) is an important security measure used to secure cloud resources, however, IDS often suffer from poor detection accuracy due to coordinated attacks such as a DDoS. Various research on distributed IDSs have been proposed to detect DDoS however, the limitations of these works the lack of technique to determine an appropriate period to share attack information among nodes in the distributed IDS. Therefore, this article proposes a distributed IDS that uses a binary segmentation change point detection algorithm to address the appropriate period to send attack information to nodes in distributed IDS and using parallel Stochastic Gradient Descent with Support Vector Machine (SGD-SVM) to achieve the distributed detection. The result of the proposed scheme was implemented in Apache Spark using NSL-KDD benchmark intrusion detection dataset. Experimental results show that the proposed distributed intrusion detection scheme outperforms existing distributed IDS for cloud computing. |
| format |
Article |
| author |
Ibrahim, Nurudeen Mahmud Zainal, Anazida |
| author_facet |
Ibrahim, Nurudeen Mahmud Zainal, Anazida |
| author_sort |
Ibrahim, Nurudeen Mahmud |
| title |
A distributed intrusion detection scheme for cloud computing |
| title_short |
A distributed intrusion detection scheme for cloud computing |
| title_full |
A distributed intrusion detection scheme for cloud computing |
| title_fullStr |
A distributed intrusion detection scheme for cloud computing |
| title_full_unstemmed |
A distributed intrusion detection scheme for cloud computing |
| title_sort |
distributed intrusion detection scheme for cloud computing |
| publisher |
IGI Global |
| publishDate |
2020 |
| url |
http://eprints.utm.my/id/eprint/90937/ http://dx.doi.org/10.4018/IJDST.2020010106 |
| _version_ |
1702169622687514624 |