A Neuro Fuzzy Based Intrusion Detection System for a Cloud Data Center Using Adaptive Learning

Abstract With its continuous improvements, the cloud computing system leaves an open door for malicious activities. This promotes the significance of constructing a malware action detection component to discover the anomalies in the virtual environment. Besides, the traditional intrusion detection system does not suit for the cloud environment. So, the proposed scheme develops an anomaly detection system, named Hypervisor Detector at a hypervisor layer to detect the abnormalities in the virtual network. Besides, the fuzzy systems have the ability to detect the presence of uncertain and imprecise nature of anomalies; they are not able to construct models based on target data. One of the successful approaches, which integrate fuzzy systems with adaptation and learning proficiencies of a neural network, such as ANFIS (Adaptive Neuro Fuzzy Inference System) model, is based on target values. The Hypervisor Detector is designed and developed with an ANFIS and practised with a hybrid algorithm, a combination of the back propagation gradient descent technique with the least square method. For the experiments and performance analysis, DARPA’s KDD cup data set is used. The performance analysis and results show that the model proposed is well designed to detect the abnormalities in virtual environment with the minimum false alarm rate and reduced overhead.

[1]  Samuel T. King,et al.  ReVirt: enabling intrusion analysis through virtual-machine logging and replay , 2002, OPSR.

[2]  Farzad Sabahi,et al.  Secure Virtualization for Cloud Environment Using Hypervisor-based Technology , 2012 .

[3]  G. H. Raisoni,et al.  Securing Cloud Computing Environment by means of Intrusion Detection and Prevention System (IDPS) , 2013 .

[4]  Hai Jin,et al.  Automated Approach to Intrusion Detection in VM-based Dynamic Execution Environment , 2012, Comput. Informatics.

[5]  Hai Jin,et al.  A VMM-based intrusion prevention system in cloud computing environment , 2013, The Journal of Supercomputing.

[6]  Tal Garfinkel,et al.  A Virtual Machine Introspection Based Architecture for Intrusion Detection , 2003, NDSS.

[7]  Carla Merkle Westphall,et al.  Intrusion Detection for Grid and Cloud Computing , 2010, IT Professional.

[8]  Elif Derya Übeyli,et al.  Application of adaptive neuro-fuzzy inference system for detection of electrocardiographic changes in patients with partial epilepsy using feature extraction , 2004, Expert Syst. Appl..

[9]  Alireza Fallahpour,et al.  Yarn Strength Modelling Using Adaptive Neuro-Fuzzy Inference System (ANFIS) and Gene Expression Programming (GEP) , 2013 .

[10]  Christof Störmann,et al.  Improving the accuracy of network intrusion detectors by input-dependent stacking , 2011, Integr. Comput. Aided Eng..

[11]  V V.Vinothina,et al.  A Survey on Resource Allocation Strategies in Cloud Computing , 2012 .

[12]  Ali A. Ghorbani,et al.  A detailed analysis of the KDD CUP 99 data set , 2009, 2009 IEEE Symposium on Computational Intelligence for Security and Defense Applications.

[13]  Sabyasachi Patra,et al.  Machine Learning Approach for Intrusion Detection on Cloud Virtual Machines , 2013 .

[14]  R. Sridaran,et al.  Cloud Computing Issues at Design and Implementation Levels - A Survey , 2012 .

[15]  Amirreza Zarrabi,et al.  Internet Intrusion Detection System Service in a Cloud Internet Intrusion Detection System Service in a Cloud Internet Intrusion Detection System Service in a Cloud Internet Intrusion Detection System Service in a Cloud , 2012 .

[16]  Jian Ma,et al.  A new approach to intrusion detection using Artificial Neural Networks and fuzzy clustering , 2010, Expert Syst. Appl..

[17]  Kevin Sloan Feature: Security in a virtualised world , 2009 .

[18]  P. Praveen Kumar,et al.  A Survey on Cloud Based Intrusion Detection System , 2013 .

[19]  V. P. Anuradha,et al.  A survey on resource allocation strategies in cloud computing , 2014, International Conference on Information Communication and Embedded Systems (ICICES2014).

[20]  Anita K. Jones,et al.  Computer System Intrusion Detection: A Survey , 2000 .

[21]  Shigeru Chiba,et al.  HyperSpector: virtual distributed monitoring environments for secure intrusion detection , 2005, VEE '05.

[22]  A. D. Gawande,et al.  INTRUSION DETECTION SYSTEM FOR CLOUD COMPUTING , 2012 .

[23]  Jyh-Shing Roger Jang,et al.  ANFIS: adaptive-network-based fuzzy inference system , 1993, IEEE Trans. Syst. Man Cybern..

[24]  Elif Derya Übeyli,et al.  Adaptive neuro-fuzzy inference system for classification of EEG signals using wavelet coefficients , 2005, Journal of Neuroscience Methods.

[25]  M SanjayRam,et al.  Effective Analysis of Cloud Based Intrusion Detection System , 2012 .

[26]  Sanjay Ram Effective Analysis of Cloud Based Intrusion Detection System , 2012 .