A Design of an Integrated Cloud-based Intrusion Detection System with Third Party Cloud Service

IF 1.1 Q3 COMPUTER SCIENCE, THEORY & METHODS

Open Computer Science Pub Date : 2021-01-01 DOI:10.1515/comp-2020-0214

Wisam Elmasry, A. Akbulut, A. Zaim

{"title":"A Design of an Integrated Cloud-based Intrusion Detection System with Third Party Cloud Service","authors":"Wisam Elmasry, A. Akbulut, A. Zaim","doi":"10.1515/comp-2020-0214","DOIUrl":null,"url":null,"abstract":"Abstract Although cloud computing is considered the most widespread technology nowadays, it still suffers from many challenges, especially related to its security. Due to the open and distributed nature of the cloud environment, this makes the cloud itself vulnerable to various attacks. In this paper, the design of a novel integrated Cloud-based Intrusion Detection System (CIDS) is proposed to immunise the cloud against any possible attacks. The proposed CIDS consists of five main modules to do the following actions: monitoring the network, capturing the traffic flows, extracting features, analyzing the flows, detecting intrusions, taking a reaction, and logging all activities. Furthermore an enhanced bagging ensemble system of three deep learning models is utilized to predict intrusions effectively. Moreover, a third-party Cloud-based Intrusion Detection System Service (CIDSS) is also exploited to control the proposed CIDS and provide the reporting service. Finally, it has been shown that the proposed approach overcomes all problems associated with attacks on the cloud raised in the literature.","PeriodicalId":43014,"journal":{"name":"Open Computer Science","volume":"11 1","pages":"365 - 379"},"PeriodicalIF":1.1000,"publicationDate":"2021-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1515/comp-2020-0214","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Open Computer Science","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1515/comp-2020-0214","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}

引用次数: 18

Abstract

Abstract Although cloud computing is considered the most widespread technology nowadays, it still suffers from many challenges, especially related to its security. Due to the open and distributed nature of the cloud environment, this makes the cloud itself vulnerable to various attacks. In this paper, the design of a novel integrated Cloud-based Intrusion Detection System (CIDS) is proposed to immunise the cloud against any possible attacks. The proposed CIDS consists of five main modules to do the following actions: monitoring the network, capturing the traffic flows, extracting features, analyzing the flows, detecting intrusions, taking a reaction, and logging all activities. Furthermore an enhanced bagging ensemble system of three deep learning models is utilized to predict intrusions effectively. Moreover, a third-party Cloud-based Intrusion Detection System Service (CIDSS) is also exploited to control the proposed CIDS and provide the reporting service. Finally, it has been shown that the proposed approach overcomes all problems associated with attacks on the cloud raised in the literature.

查看原文本刊更多论文

基于云的第三方云服务集成入侵检测系统设计

摘要尽管云计算被认为是当今应用最广泛的技术，但它仍然面临着许多挑战，尤其是与安全性有关的挑战。由于云环境的开放性和分布式性质，这使得云本身容易受到各种攻击。在本文中，提出了一种新的基于云的集成入侵检测系统（CIDS）的设计，以保护云免受任何可能的攻击。所提出的CIDS由五个主要模块组成，用于执行以下操作：监控网络、捕获流量、提取特征、分析流量、检测入侵、做出反应和记录所有活动。此外，利用三个深度学习模型的增强套袋集成系统来有效预测入侵。此外，还利用第三方基于云的入侵检测系统服务（CIDSS）来控制所提出的CIDS并提供报告服务。最后，已经表明，所提出的方法克服了文献中提出的与对云的攻击相关的所有问题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊