Towards an Intelligent Intrusion Detection System to Detect Malicious Activities in Cloud Computing-Reference-Cited by-同舟云学术

Towards an Intelligent Intrusion Detection System to Detect Malicious Activities in Cloud Computing

Published:2023-08-24 Issue:17 Volume:13 Page:9588
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Attou Hanaa¹,Mohy-eddine Mouaad¹,Guezzaz Azidine¹,Benkirane Said¹^ORCID,Azrour Mourade²^ORCID,Alabdultif Abdulatif³^ORCID,Almusallam Naif⁴^ORCID

Affiliation:

1. Technology Higher School Essaouira, Cadi Ayyad University, Essaouira 44000, Morocco

2. Informatique Décisionnelle et Modélisation des Systèmes (IDMS) Team, Faculty of Sciences and Techniques, Moulay Ismail University of Meknès, Errachidia 52000, Morocco

3. Department of Computer Science, College of Computer, Qassim University, Buraydah 52571, Saudi Arabia

4. Department of Management Information Systems (MIS), College of Business Administration, King Faisal University (KFU), Al-Ahsa 31982, Saudi Arabia

Abstract

Several sectors have embraced Cloud Computing (CC) due to its inherent characteristics, such as scalability and flexibility. However, despite these advantages, security concerns remain a significant challenge for cloud providers. CC introduces new vulnerabilities, including unauthorized access, data breaches, and insider threats. The shared infrastructure of cloud systems makes them attractive targets for attackers. The integration of robust security mechanisms becomes crucial to address these security challenges. One such mechanism is an Intrusion Detection System (IDS), which is fundamental in safeguarding networks and cloud environments. An IDS monitors network traffic and system activities. In recent years, researchers have explored the use of Machine Learning (ML) and Deep Learning (DL) approaches to enhance the performance of IDS. ML and DL algorithms have demonstrated their ability to analyze large volumes of data and make accurate predictions. By leveraging these techniques, IDSs can adapt to evolving threats, detect previous attacks, and reduce false positives. This article proposes a novel IDS model based on DL algorithms like the Radial Basis Function Neural Network (RBFNN) and Random Forest (RF). The RF classifier is used for feature selection, and the RBFNN algorithm is used to detect intrusion in CC environments. Moreover, the datasets Bot-IoT and NSL-KDD have been utilized to validate our suggested approach. To evaluate the impact of our approach on an imbalanced dataset, we relied on Matthew’s Correlation Coefficient (MCC) as a normalized measure. Our method achieves accuracy (ACC) higher than 92% using the minimum features, and we managed to increase the MCC from 28% to 93%. The contributions of this study are twofold. Firstly, it presents a novel IDS model that leverages DL algorithms, demonstrating an improved ACC higher than 92% using minimal features and a substantial increase in MCC from 28% to 93%. Secondly, it addresses the security challenges specific to CC environments, offering a promising solution to enhance security in cloud systems. By integrating the proposed IDS model into cloud environments, cloud providers can benefit from enhanced security measures, effectively mitigating unauthorized access and potential data breaches. The utilization of DL algorithms, RBFNN, and RF has shown remarkable potential in detecting intrusions and strengthening the overall security posture of CC.

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/13/17/9588/pdf

Reference61 articles.

1. IDS Malicious Flow Classification;Liu;J. Robot. Netw. Artif. Life,2020

2. Tahirkheli, A.I., Shiraz, M., Hayat, B., Idrees, M., Sajid, A., Ullah, R., Ayub, N., and Kim, K.-I. (2021). A Survey on Modern Cloud Computing Security over Smart City Networks: Threats, Vulnerabilities, Consequences, Countermeasures, and Challenges. Electronics, 10.

3. Cloud Computing Deployment Models: A Comparative Study;Patel;Int. J. Innov. Res. Comput. Sci. Technol.,2021

4. Aceto, F., Botta, G., Ciuonzo, A., Persico, D., and Pescapé, V. (2019, January 9–13). A Characterizing Cloud-to-user Latency as perceived by AWS and Azure Users spread over the Globe. Proceedings of the 2019 IEEE Global Communications Conference, Big Island, HI, USA.

5. Hourani, H., and Abdallah, M. (, January 11–12). Cloud Computing: Legal and Security Issues. Proceedings of the International Conference on Computer Science and Information Technology, Amman, Jordan.

Cited by 14 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. An efficient intrusion detection system for IoT security using CNN decision forest;PeerJ Computer Science;2024-09-09

2. Performance comparison analysis of classification methodologies for effective detection of intrusions;Computers & Security;2024-08

3. ALRN-RCS: Advanced Approach to Network Intrusion Detection Using Attention Long-Term Recurrent Networks and Chaotic Optimization;IETE Journal of Research;2024-07-22

4. CSO-DQN: Circle Search Optimization-based Deep Q-Learning Network for Intrusion Detection System in Cloud Environment;IETE Journal of Research;2024-05-26

5. Applying Machine Learning to Enhance Intrusion Detection Systems;2024 IEEE International Conference on Contemporary Computing and Communications (InC4);2024-03-15