Novel Network IDS in Cloud Environment Based on Optimized BP Neural Network Using Genetic Algorithm

Nowadays, Cloud Computing (CC) had become an integral part of IT industry. It represents the maturing of technology and is a pliable, cost-effective platform which provides business/IT services over the Internet. Although there are several benefits of adopting this technology, there are some significant hurdles to it and one of them is security. In fact, due to the distributed and open nature of the cloud, resources, applications, and data are vulnerable and prone to intrusions that affect confidentiality, availability and integrity of Cloud resources and offered services. Network Intrusion Detection System (NIDS) has become the most commonly used component of computer system security and compliance practices that defends network accessible Cloud resources and services from various kinds of threats and attacks, while maintaining performance and service quality. In this work, in order to detect intrusions in CC environment, we propose a novel anomaly NIDS based on Back Propagation Neural Network (BPNN) classifier optimized using Genetic Algorithm. Since, Learning rate and Momentum term are among the most relevant parameters that impact the performance of BPNN classifier, we have employed Genetic Algorithm to find the optimal values of these two parameters which ensure high detection rate, high accuracy and low false alarm rate. Experimental results on KDD CUP' 99 dataset indicate that in comparison to several traditional and new techniques, our proposed approach achieves higher detection rate and lower false positive rate.

[1]  Ruby Sharma,et al.  An Enhanced Approach to Fuzzy C-means Clustering for Anomaly Detection , 2018 .

[2]  Partha Ghosh,et al.  Intrusion Detection System Based on BCS-GA in Cloud Environment , 2016 .

[3]  Soukaena Hassan Hashim,et al.  Proposed Network Intrusion Detection System Based on Fuzzy c Mean Algorithm in Cloud Computing Environment , 2017 .

[4]  Partha Ghosh,et al.  An Efficient Cloud Network Intrusion Detection System , 2015 .

[5]  Samarjeet Borah,et al.  An Enhanced Intrusion Detection System Based on Clustering , 2018 .

[6]  Jason J. Jung,et al.  HIDCC: A hybrid intrusion detection approach in cloud computing , 2018, Concurr. Comput. Pract. Exp..

[7]  Jaouhar Fattahi,et al.  Fusion of ANN and SVM classifiers for network attack detection , 2017, 2017 18th International Conference on Sciences and Techniques of Automatic Control and Computer Engineering (STA).

[8]  Mohamed Rida,et al.  A novel architecture combined with optimal parameters for back propagation neural networks applied to anomaly network intrusion detection , 2018, Comput. Secur..

[9]  Anshul Gupta,et al.  An Intrusion Detection System for Detecting Denial-of-Service Attack in Cloud Using Artificial Bee Colony , 2016 .

[10]  Soukaena Hassan Hashim,et al.  Proposed Network Intrusion Detection System In Cloud Environment Based on Back Propagation Neural Network , 2017 .

[11]  Yasir Mehmood,et al.  Distributed intrusion detection system using mobile agents in cloud computing environment , 2015, 2015 Conference on Information Assurance and Cyber Security (CIACS).

[12]  Bhavin Shah,et al.  Artificial Neural Network based Intrusion Detection System: A Survey , 2012 .

[13]  Hamid Mirvaziri,et al.  Attacks and Intrusion Detection in Cloud Computing Using Neural Networks and Particle Swarm Optimization Algorithms , 2018 .

[14]  Dhiren R. Patel,et al.  A novel hybrid-network intrusion detection system (H-NIDS) in cloud computing , 2013, 2013 IEEE Symposium on Computational Intelligence in Cyber Security (CICS).

[15]  Taufik Abrão,et al.  Network Anomaly Detection System using Genetic Algorithm and Fuzzy Logic , 2018, Expert Syst. Appl..

[16]  Yang Yu,et al.  A Hybrid Methodologies for Intrusion Detection Based Deep Neural Network with Support Vector Machine and Clustering Technique , 2016 .