Hypervisor-based cloud intrusion detection through online multivariate statistical change tracking

被引：49

作者：

Aldribi, Abdulaziz ^{[1
]}

Traore, Issa ^{[2
]}

Moa, Belaid ^{[2
]}

Nwamuo, Onyekachi ^{[2
]}

机构：

[1] Qassim Univ, Dept Comp Engn, Buraydah, Saudi Arabia

[2] Univ Victoria, Dept Elect & Comp Engn, Victoria, BC, Canada

来源：

COMPUTERS & SECURITY | 2020年 / 88卷

关键词：

Cloud computing; Cloud security monitoring; Hypervisor-based intrusion detection; Anomaly detection; Change detection; Multistage attacks; R-PACKAGE; ATTACKS; SYSTEM;

D O I：

10.1016/j.cose.2019.101646

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Cloud computing is facing a multidimensional and rapidly evolving threat landscape, making intrusion detection more challenging. This paper introduces a new hypervisor-based cloud intrusion detection system (IDS) that uses online multivariate statistical change analysis to detect anomalous network behaviors. As a departure from the conventional monolithic network IDS feature model, we leverage the fact that a hypervisor consists of a collection of instances, to introduce an instance-oriented feature model that exploits the individual and correlated behaviors of instances to improve the detection capability. The proposed approach is evaluated by collecting and using a new cloud intrusion dataset that includes a wide variety of attack vectors. (C) 2019 Elsevier Ltd. All rights reserved.

引用

页数：21

共 50 条

[21] Cloud Based Intrusion Detection Architecture for Smartphones
Kumar, Manish
Hanumanthappa, M.
2015 INTERNATIONAL CONFERENCE ON INNOVATIONS IN INFORMATION, EMBEDDED AND COMMUNICATION SYSTEMS (ICIIECS), 2015,
[22] A Cloud Based Network Intrusion Detection System
You, Li
Wang, Zhanyong
TEHNICKI VJESNIK-TECHNICAL GAZETTE, 2022, 29 (03): : 987 - 992
[23] ASPECTS OF MULTIVARIATE STATISTICAL THEORY WITH THE APPLICATION TO CHANGE DETECTION
Erten, Esra
Reigber, Andreas
Hellwich, Olaf
2010 IEEE INTERNATIONAL GEOSCIENCE AND REMOTE SENSING SYMPOSIUM, 2010, : 1960 - 1963
[24] Taxonomy of statistical based anomaly detection techniques for intrusion detection
Qayyum, A
Islam, MH
Jamil, M
IEEE: 2005 International Conference on Emerging Technologies, Proceedings, 2005, : 270 - 276
[25] A DISTRIBUTED INTRUSION DETECTION MODEL BASED ON CLOUD THEORY
Li, Han
Wu, Qiuxin
2012 IEEE 2ND INTERNATIONAL CONFERENCE ON CLOUD COMPUTING AND INTELLIGENT SYSTEMS (CCIS) VOLS 1-3, 2012, : 435 - 439
[26] Signature Based Semantic Intrusion Detection System on Cloud
Sangeetha, S.
Devi, B. Gayathri
Ramya, R.
Dharani, M. K.
Sathya, P.
INFORMATION SYSTEMS DESIGN AND INTELLIGENT APPLICATIONS, VOL 1, 2015, 339 : 657 - 666
[27] Nonparametric and Online Change Detection in Multivariate Datastreams Using QuantTree
Frittoli, Luca
Carrera, Diego
Boracchi, Giacomo
IEEE TRANSACTIONS ON KNOWLEDGE AND DATA ENGINEERING, 2023, 35 (08) : 8328 - 8342
[28] Multivariate Linear Regression Model for Host Based Intrusion Detection
Gautam, Sunil Kumar
Om, Hari
COMPUTATIONAL INTELLIGENCE IN DATA MINING, VOL 3, 2015, 33
[29] Intrusion Detection on AWS Cloud through Hybrid Deep Learning Algorithm
Balajee, R. M.
Kannan, M. K. Jayanthi
ELECTRONICS, 2023, 12 (06)
[30] Intrusion detection based on concept drift detection and online incremental learning
Jemili, Farah
Jouini, Khaled
Korbaa, Ouajdi
INTERNATIONAL JOURNAL OF PERVASIVE COMPUTING AND COMMUNICATIONS, 2025, 21 (01) : 81 - 115

← 1 2 3 4 5 →