The rapid growth of distributed computing systems that heavily communicate and interact with each other has raised the importance of confrontation against cyber intruders, attackers, and subversives. With respect to the emergence of cloud computing and its deployment all over the world, and because of its distributed and decentralized nature, a special security requirement is needed to protect this paradigm. Intrusion detection systems could differentiate usual and unusual behaviors by means of supervising, verifying, and controlling the configurations, log files, network traffic, user activities, and even the actions of different processes by which they could add new security dimensions to the cloud computing systems. The position of the intrusion detection mechanisms in cloud computing systems as well as the applied algorithms in those mechanisms are the 2 main factors in which many researches have focused on. The goal of those researches is to uncover intrusions as much as possible and to increase the rate and accuracy of detections while reducing the false warnings. Those solutions, however, mainly have high computational loads, low accuracy, and high implementation costs. In this paper, we present a comprehensive and accurate solution to detect and prevent intrusions in cloud computing systems by using a hybrid method, called HIDCC. The implementation results of the proposed method show that the intrusion coverage, intrusion detection accuracy, reliability, and availability in cloud computing systems are considerably increased, and false warnings are significantly reduced.

REFERENCES

1Modi CN, Patel DR, Patel A, Rajarajan M. Integrating signature apriori based network intrusion detection system (nids) in cloud computing. Procedia Technol. 2012; 6: 905–912.
10.1016/j.protcy.2012.10.110
Google Scholar
2Jabbarpour MR, Jalooli A, Marefat A, Noor RM. A taxonomy-based comparison of vehicle cloud architectures. In: The 3rd International Conference on Information and Computer Networks (ICICN 2015), Florence, Italy; 2015.
Google Scholar
3Modi C, Patel D, Borisaniya B, Patel H, Patel A, Rajarajan M. A survey of intrusion detection techniques in cloud. J Network Comput Appl. 2013; 36(1): 42–57.
10.1016/j.jnca.2012.05.003
Web of Science® Google Scholar
4Brunette G, Mogull R, et al. Security guidance for critical areas of focus in cloud computing v2. 1. Cloud Secur Alliance. 2009: 1–76.
Google Scholar
5Leavitt N. Is cloud computing really ready for prime time. Growth. 2009; 27(5): 15–20.
Google Scholar
6Choi C, Choi J, Kim P. Ontology-based access control model for security policy reasoning in cloud computing. J Supercomputing. 2014; 67(3): 711–722.
10.1007/s11227-013-0980-1
Web of Science® Google Scholar
7Patel A, Taghavi M, Bakhtiyari K, JúNior JC. An intrusion detection and prevention system in cloud computing: a systematic review. J Network Comput Appl. 2013; 36(1): 25–41.
10.1016/j.jnca.2012.08.007
Web of Science® Google Scholar
8Scarfone K, Mell P. Guide to intrusion detection and prevention systems (idps). NIST Spec Publ. 2007; 800(2007): 94.
Google Scholar
9Gens F. New idc it cloud services survey: top benefits and challenges. IDC Exch. 2009: 17–19.
Google Scholar
10Allen JH. Cert system and network security practices. In: Proceedings of the Fifth National Colloquium for Information Systems Security Education (NCISSE'01), George Mason University; 2001; Fairfax, VA USA: 22–24.
Google Scholar
11Liao HJ, Lin CHR, Lin YC, Tung KY. Intrusion detection system: a comprehensive review. J Network Comput Appl. 2013; 36(1): 16–24.
10.1016/j.jnca.2012.09.004
Web of Science® Google Scholar
12Emami M, Jabbarpour MR, Abolhassani B, Jung JJ, Zarrabi H. Soft cooperative spectrum sensing using quantization method in the presence of smart pue attack. Mobile Networks Appl. 2017: 1–10.
Google Scholar
13Choi J, Choi C, Ko B, Kim P. A method of DDos attack detection using http packet pattern and rule engine in cloud computing environment. Soft Comput. 2014; 18(9): 1697–1703.
10.1007/s00500-014-1250-8
Web of Science® Google Scholar
14Anantvalee T, Wu J. A survey on intrusion detection in mobile ad hoc networks. Wireless Network Security: Springer: New York, USA; 2007: 159–180.
10.1007/978-0-387-33112-6_7
Google Scholar
15Vieira K, Schulter A, Westphall C, Westphall C. Intrusion detection for grid and cloud computing. IT Prof Mag. 2010; 12(4): 38.
10.1109/MITP.2009.89
Web of Science® Google Scholar
16Modi C, Patel D, Borisanya B, Patel A, Rajarajan M. A novel framework for intrusion detection in cloud. In: Proceedings of the Fifth International Conference on Security of Information and Networks ACM: Jaipur, India; 2012: 67–74.
Google Scholar
17Roschke S, Cheng F, Meinel C. An extensible and virtualization-compatible ids management architecture. Information Assurance and Security, 2009. IAS'09. Fifth International Conference on, Vol. 2: IEEE: Xi'An China, China; 2009: 130–134.
Google Scholar
18Dastjerdi AV, Bakar KA, Tabatabaei SGH. Distributed intrusion detection in clouds using mobile agents. In: Advanced Engineering Computing and Applications in Sciences, 2009. ADVCOMP'09. Third International Conference on, IEEE: Sliema, Malta; 2009: 175–180.
Google Scholar
19Bakshi A, Dujodwala YB. Securing cloud from DDos attacks using intrusion detection system in virtual machine. In: Communication Software and Networks, 2010. ICCSN'10. Second International Conference on, IEEE: Singapore, Singapore; 2010: 260–264.
Google Scholar
20Mazzariello C, Bifulco R, Canonico R. Integrating a network ids into an open source cloud computing environment. In: Information Assurance and Security (IAS), 2010 Sixth International Conference on, IEEE: Atlanta, GA, USA; 2010: 265–270.
Google Scholar
21Ram S. Secure cloud computing based on mutual intrusion detection system. Int J Comput Appl. 2012; 2(1): 57–67.
Google Scholar
22Gowrison G, Ramar K, Muneeswaran K, Revathi T. Minimal complexity attack classification intrusion detection system. Appl Soft Comput. 2013; 13(2): 921–927.
10.1016/j.asoc.2012.09.017
Web of Science® Google Scholar
23Sourcefire I. Snort. 2013. http://www.snort.org
Google Scholar
24Di Pietro R, Mancini LV. Intrusion detection systems, Vol. 38: Springer Science & Business Media: New York, USA; 2008.
Google Scholar
25Ruggieri S. Efficient C4.5 [classification algorithm]. IEEE Trans Knowl Data Eng. 2002; 14(2): 438–444.
10.1109/69.991727
Web of Science® Google Scholar
26Arbib MA. The handbook of brain theory and neural networks: MIT Press: Massachusetts, USA; 2003.
Google Scholar
27Han J, Pei J, Kamber M. Data mining: concepts and techniques: Elsevier: Waltham, USA; 2011.
Google Scholar
28Nurmi D, Wolski R, Grzegorczyk C, et al. The eucalyptus open-source cloud-computing system. In: Cluster Computing and the Grid, 2009. CCGRID'09. 9th IEEE/ACM International Symposium on, IEEE: Shanghai, China; 2009: 124–131.
Google Scholar
29Frank E, Hall M, Holmes G, et al. Weka. Data mining and knowledge discovery handbook: Springer: New York, USA; 2005: 1305–1314.
10.1007/0-387-25465-X_62
Google Scholar
30Tavallaee M, Bagheri E, Lu W, Ghorbani AA. A detailed analysis of the kdd cup 99 data set. In: Proceedings of the Second IEEE Symposium on Computational Intelligence for Security and Defence Applications 2009, Ottawa, Canada; 2009: 1–6.
Google Scholar
31Chandolikar N, Nandavadekar V. Efficient algorithm for intrusion attack classification by analyzing kdd cup 99. In: 2012 Ninth International Conference on Wireless and Optical Communications Networks (WOCN) IEEE: Indore, India; 2012: 1–5.
Google Scholar
32Modi CN, Patel D. A novel hybrid-network intrusion detection system (h-nids) in cloud computing. In: Computational Intelligence in Cyber Security (CICS), 2013 IEEE Symposium on, IEEE: Singapore, Singapore; 2013: 23–30.
Google Scholar

Citing Literature

Volume30, Issue3

Special issue on Intelligent approaches for security technologies (IAST 2017)

10 February 2018

e4171

HIDCC: A hybrid intrusion detection approach in cloud computing

Summary

REFERENCES

Citing Literature

References

Information

About Wiley Online Library

Help & Support

Opportunities

Connect with Wiley

HIDCC: A hybrid intrusion detection approach in cloud computing

Summary

REFERENCES

Citing Literature

References

Related

Information