Skip to main content
SpringerLink
Log in

Host Based Intrusion Detection and Prevention Model Against DDoS Attack in Cloud Computing

  • Conference paper
  • First Online:
Book cover Advances on P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC 2017)

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 13))

Abstract

Cloud computing has become an innovative technology. Recent advances in hardware and software have put tremendous pressure on administrators, who manage these resources to provide an uninterrupted service. System administrators should be familiar with cloud-server monitoring and network tools. The main focus of the present research is the design of a model that prevents distributed denial-of-service attacks based on host-based intrusion detection protection systems over hypervisor environments. The prevention model uses principal component analysis and linear discriminant analysis with a hybrid, nature-inspired metaheuristic algorithm called Ant Lion optimisation for feature selection and artificial neural networks to classify and configure the cloud server. The current results represent a feasible outcome for a good intrusion detection and prevention framework for DDoS-cloud computing systems based on statistics and predicted techniques.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Subashini, S., Kavitha, V.: A survey on security issues in service delivery models of cloud computing. J. Netw. Comput. Appl. 34, 1–11 (2011)

    Article  Google Scholar 

  2. Beloglazov, A., Abawajy, J., Buyya, R.: Energy-aware resource allocation heuristics for efficient management of data centers for cloud computing. Future Gener. Comput. Syst. 28, 755–768 (2012)

    Article  Google Scholar 

  3. Dorbala, S.Y., Kishore, R., Hubballi, N.: An experience report on scalable implementation of ddos attack detection. In: International Conference on Advanced Information Systems Engineering, pp. 518–529. Springer (2015)

    Google Scholar 

  4. Gérard, K., Hamaide, M., Sadre, R., Van Roy, P., Bilal, M.: Collaborative intrusion detection system for small computers

    Google Scholar 

  5. Anusha, K., Sathiyamoorthy, E.: OMAMIDS: ontology based multi-agent model intrusion detection system for detecting web service attacks. J. Appl. Secur. Res. 11, 489–508 (2016)

    Article  Google Scholar 

  6. Akamai (2017)

    Google Scholar 

  7. Ullrich, J., Zseby, T., Fabini, J., Weippl, E.: Network-based secret communication in clouds: a survey. IEEE Commun. Surv. Tutor. 19, 1112–1144 (2017)

    Article  Google Scholar 

  8. Suryawanshi, M.S.M., Kolhe, M.V.L.: Big data analytics: requirements and characteristics. Int. J. 4, 46–51 (2017)

    Google Scholar 

  9. Zargar, S.T., Joshi, J., Tipper, D.: A survey of defense mechanisms against distributed denial of service (DDoS) flooding attacks. IEEE Commun. Surv. Tutor. 15, 2046–2069 (2013)

    Article  Google Scholar 

  10. Sun, D., Zhang, J., Fan, W., Wang, T., Liu, C., Huang, W.: SPLM: security protection of live virtual machine migration in cloud computing. In: Proceedings of the 4th ACM International Workshop on Security in Cloud Computing, pp. 2–9. ACM (2016)

    Google Scholar 

  11. Gupta, B., Badve, O.P.: Taxonomy of DoS and DDoS attacks and desirable defense mechanism in a cloud computing environment. In: Neural Computing and Applications, pp. 1–28 (2016)

    Google Scholar 

  12. Naik, N., Jenkins, P.: An analysis of open standard identity protocols in cloud computing security paradigm. In: 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, 14th International Conference on Pervasive Intelligence and Computing, 2nd International Conference on Big Data Intelligence and Computing and Cyber Science and Technology Congress (DASC/PiCom/DataCom/CyberSciTech), pp. 428–431. IEEE (2016)

    Google Scholar 

  13. Patel, A., Taghavi, M., Bakhtiyari, K., JúNior, J.C.: An intrusion detection and prevention system in cloud computing: a systematic review. J. Netw. Comput. Appl. 36, 25–41 (2013)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Faculty of Computer Systems and Software Engineering, Gambang, Malaysia

    Aws Naser Jaber & Mohamad Fadli Zolkipli

  2. National University of Malaysia, Bangi, Malaysia

    Mohamad Fadli Zolkipli, Hasan Awni Shakir & Mohammed R. Jassim

  3. University of Technology, Baghdad, Iraq

    Mohammed R. Jassim

Authors
  1. Aws Naser Jaber
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Mohamad Fadli Zolkipli
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hasan Awni Shakir
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Mohammed R. Jassim
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Aws Naser Jaber .

Editor information

Editors and Affiliations

  1. Technical University of Catalonia, Barcelona, Spain

    Fatos Xhafa

  2. Open University of Catalonia, Barcelona, Spain

    Santi Caballé

  3. Fukuoka Institute of Technology (FIT), Fukuoka, Japan

    Leonard Barolli

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Jaber, A.N., Zolkipli, M.F., Shakir, H.A., Jassim, M.R. (2018). Host Based Intrusion Detection and Prevention Model Against DDoS Attack in Cloud Computing. In: Xhafa, F., Caballé, S., Barolli, L. (eds) Advances on P2P, Parallel, Grid, Cloud and Internet Computing. 3PGCIC 2017. Lecture Notes on Data Engineering and Communications Technologies, vol 13. Springer, Cham. https://doi.org/10.1007/978-3-319-69835-9_23

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-69835-9_23

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-69834-2

  • Online ISBN: 978-3-319-69835-9

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation