A Design Of An Integrated Cloud-based Intrusion Detection System With Third Party Cloud Service


Creative Commons License

Elmasry W., AKBULUT A., Zaim A. H.

OPEN COMPUTER SCIENCE, vol.11, no.1, pp.365-379, 2021 (ESCI) identifier identifier

  • Publication Type: Article / Article
  • Volume: 11 Issue: 1
  • Publication Date: 2021
  • Doi Number: 10.1515/comp-2020-0214
  • Journal Name: OPEN COMPUTER SCIENCE
  • Journal Indexes: Emerging Sources Citation Index (ESCI), Scopus
  • Page Numbers: pp.365-379
  • Istanbul Kültür University Affiliated: Yes

Abstract

Although cloud computing is considered the most widespread technology nowadays, it still suffers from many challenges, especially related to its security. Due to the open and distributed nature of the cloud environment, this makes the cloud itself vulnerable to various attacks. In this paper, the design of a novel integrated Cloud-based Intrusion Detection System (CIDS) is proposed to immunise the cloud against any possible attacks. The proposed CIDS consists of five main modules to do the following actions: monitoring the network, capturing the traffic flows, extracting features, analyzing the flows, detecting intrusions, taking a reaction, and logging all activities. Furthermore an enhanced bagging ensemble system of three deep learning models is utilized to predict intrusions effectively. Moreover, a third-party Cloud-based Intrusion Detection System Service (CIDSS) is also exploited to control the proposed CIDS and provide the reporting service. Finally, it has been shown that the proposed approach overcomes all problems associated with attacks on the cloud raised in the literature.