Collaborative anomaly detection framework for handling big data of cloud computing

Nour Moustafa; Gideon Creech; Elena Sitnikova; Marwa Keshk

doi:10.1109/MilCIS.2017.8190421

Collaborative anomaly detection framework for handling big data of cloud computing

Nour Moustafa, Gideon Creech, Elena Sitnikova, Marwa Keshk

Research output: Chapter in Book/Report/Conference proceeding › Chapter › peer-review

39 Citations (Scopus)

Abstract

With the ubiquitous computing of providing services and applications at anywhere and anytime, cloud computing is the best option as it offers flexible and pay-per-use based services to its customers. Nevertheless, security and privacy are the main challenges to its success due to its dynamic and distributed architecture, resulting in generating big data that should be carefully analysed for detecting network's vulnerabilities. In this paper, we propose a Collaborative Anomaly Detection Framework (CADF) for detecting cyber attacks from cloud computing environments. We provide the technical functions and deployment of the framework to illustrate its methodology of implementation and installation. The framework is evaluated on the UNSW-NB15 dataset to check its credibility while deploying it in cloud computing environments. The experimental results showed that this framework can easily handle large-scale systems as its implementation requires only estimating statistical measures from network observations. Moreover, the evaluation performance of the framework outperforms three state-of-the-art techniques in terms of false positive rate and detection rate.

Original language	English
Title of host publication	2017 Military Communications and Information Systems Conference, (MilCIS)
Subtitle of host publication	MilCIS 2017 - Proceedings
Place of Publication	Massachusetts, U.S.A.
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1-6
Number of pages	6
ISBN (Electronic)	9781509040032
DOIs	https://doi.org/10.1109/MilCIS.2017.8190421
Publication status	Published - 2017
Externally published	Yes
Event	2017 Military Communications and Information Systems Conference, MilCIS 2017 - Canberra, Australia Duration: 14 Nov 2017 → 16 Nov 2017

Conference

Conference	2017 Military Communications and Information Systems Conference, MilCIS 2017
Country/Territory	Australia
City	Canberra
Period	14/11/17 → 16/11/17

Keywords

Cloud Computing
Collaborative Anomaly Detection Framework
Gaussian Mixture Model (GMM)
Interquartile Range (IQR)
UNSW-NB15 dataset

Access to Document

10.1109/MilCIS.2017.8190421Licence: In Copyright

Cite this

@inbook{9a41aa1db18f42cc9045c7ae97e06ef6,

title = "Collaborative anomaly detection framework for handling big data of cloud computing",

abstract = "With the ubiquitous computing of providing services and applications at anywhere and anytime, cloud computing is the best option as it offers flexible and pay-per-use based services to its customers. Nevertheless, security and privacy are the main challenges to its success due to its dynamic and distributed architecture, resulting in generating big data that should be carefully analysed for detecting network's vulnerabilities. In this paper, we propose a Collaborative Anomaly Detection Framework (CADF) for detecting cyber attacks from cloud computing environments. We provide the technical functions and deployment of the framework to illustrate its methodology of implementation and installation. The framework is evaluated on the UNSW-NB15 dataset to check its credibility while deploying it in cloud computing environments. The experimental results showed that this framework can easily handle large-scale systems as its implementation requires only estimating statistical measures from network observations. Moreover, the evaluation performance of the framework outperforms three state-of-the-art techniques in terms of false positive rate and detection rate.",

keywords = "Cloud Computing, Collaborative Anomaly Detection Framework, Gaussian Mixture Model (GMM), Interquartile Range (IQR), UNSW-NB15 dataset",

author = "Nour Moustafa and Gideon Creech and Elena Sitnikova and Marwa Keshk",

year = "2017",

doi = "10.1109/MilCIS.2017.8190421",

language = "English",

pages = "1--6",

booktitle = "2017 Military Communications and Information Systems Conference, (MilCIS)",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

note = "2017 Military Communications and Information Systems Conference, MilCIS 2017 ; Conference date: 14-11-2017 Through 16-11-2017",

}

Moustafa, N, Creech, G, Sitnikova, E & Keshk, M 2017, Collaborative anomaly detection framework for handling big data of cloud computing. in 2017 Military Communications and Information Systems Conference, (MilCIS): MilCIS 2017 - Proceedings. Institute of Electrical and Electronics Engineers Inc., Massachusetts, U.S.A., pp. 1-6, 2017 Military Communications and Information Systems Conference, MilCIS 2017, Canberra, Australia, 14/11/17. https://doi.org/10.1109/MilCIS.2017.8190421

Collaborative anomaly detection framework for handling big data of cloud computing. / Moustafa, Nour; Creech, Gideon; Sitnikova, Elena et al.

2017 Military Communications and Information Systems Conference, (MilCIS): MilCIS 2017 - Proceedings. Massachusetts, U.S.A. : Institute of Electrical and Electronics Engineers Inc., 2017. p. 1-6.

Research output: Chapter in Book/Report/Conference proceeding › Chapter › peer-review

TY - CHAP

T1 - Collaborative anomaly detection framework for handling big data of cloud computing

AU - Moustafa, Nour

AU - Creech, Gideon

AU - Sitnikova, Elena

AU - Keshk, Marwa

PY - 2017

Y1 - 2017

N2 - With the ubiquitous computing of providing services and applications at anywhere and anytime, cloud computing is the best option as it offers flexible and pay-per-use based services to its customers. Nevertheless, security and privacy are the main challenges to its success due to its dynamic and distributed architecture, resulting in generating big data that should be carefully analysed for detecting network's vulnerabilities. In this paper, we propose a Collaborative Anomaly Detection Framework (CADF) for detecting cyber attacks from cloud computing environments. We provide the technical functions and deployment of the framework to illustrate its methodology of implementation and installation. The framework is evaluated on the UNSW-NB15 dataset to check its credibility while deploying it in cloud computing environments. The experimental results showed that this framework can easily handle large-scale systems as its implementation requires only estimating statistical measures from network observations. Moreover, the evaluation performance of the framework outperforms three state-of-the-art techniques in terms of false positive rate and detection rate.

AB - With the ubiquitous computing of providing services and applications at anywhere and anytime, cloud computing is the best option as it offers flexible and pay-per-use based services to its customers. Nevertheless, security and privacy are the main challenges to its success due to its dynamic and distributed architecture, resulting in generating big data that should be carefully analysed for detecting network's vulnerabilities. In this paper, we propose a Collaborative Anomaly Detection Framework (CADF) for detecting cyber attacks from cloud computing environments. We provide the technical functions and deployment of the framework to illustrate its methodology of implementation and installation. The framework is evaluated on the UNSW-NB15 dataset to check its credibility while deploying it in cloud computing environments. The experimental results showed that this framework can easily handle large-scale systems as its implementation requires only estimating statistical measures from network observations. Moreover, the evaluation performance of the framework outperforms three state-of-the-art techniques in terms of false positive rate and detection rate.

KW - Cloud Computing

KW - Collaborative Anomaly Detection Framework

KW - Gaussian Mixture Model (GMM)

KW - Interquartile Range (IQR)

KW - UNSW-NB15 dataset

UR - http://www.scopus.com/inward/record.url?scp=85047198567&partnerID=8YFLogxK

U2 - 10.1109/MilCIS.2017.8190421

DO - 10.1109/MilCIS.2017.8190421

M3 - Chapter

AN - SCOPUS:85047198567

SP - 1

EP - 6

BT - 2017 Military Communications and Information Systems Conference, (MilCIS)

PB - Institute of Electrical and Electronics Engineers Inc.

CY - Massachusetts, U.S.A.

T2 - 2017 Military Communications and Information Systems Conference, MilCIS 2017

Y2 - 14 November 2017 through 16 November 2017

ER -

Collaborative anomaly detection framework for handling big data of cloud computing

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this