Title: An anomaly-based approach for DDoS attack detection in cloud environment

Authors: Adnan Rawashdeh; Mouhammd Alkasassbeh; Muna Al-Hawawreh

Addresses: Software Engineering Department, Faculty of IT & CS, Yarmouk University, Irbid, Jordan ' Computer Science Department, Faculty of IT, Mutah University, Mutah, Jordan ' Computer Science Department, Faculty of IT, Mutah University, Mutah, Jordan

Abstract: Cloud computing is currently a major focal point for researchers owing to its widespread application and benefits. Cloud computing's complete reliance on the internet for service provision and its distributed nature pose challenges to security, the most serious being insider Distributed Denial of Service (DDoS) which causes a total deactivation of service. Traditional defence mechanisms, such as firewalls, are unable to detect insider attacks. This work proposes an anomaly intrusion detection approach in the hypervisor layer to discourage DDoS activities between virtual machines. The proposed approach is implemented by the evolutionary neural network which integrates the particle swarm optimisation with neural network for detection and classification of the traffic that is exchanged between virtual machines. The performance analysis and results of our proposed approach detect and classify the DDoS attacks in the cloud environment with minimum false alarms and high detection accuracy.

Keywords: distributed denial of service; DDoS; cloud computing; intrusion detection system; hypervisor; attacks detection; neural networks.

DOI: 10.1504/IJCAT.2018.093533

International Journal of Computer Applications in Technology, 2018 Vol.57 No.4, pp.312 - 324

Available online: 13 Jul 2018 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article