Practical runtime security mechanisms for an aPaaS cloud

Sandıkkaya, Mehmet Tahir; Odevci, Bahadir; Ovatman, Tolga

doi:10.1109/glocomw.2014.7063385

Cited by 5 publications

(1 citation statement)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The providers may limit customer applications' access to trivial resources such as files or sockets via carefully set up permissions. However, memory and CPU are shared among multiple threads in web applications as well as per-request user behavior cannot be traced (Sandıkkaya et al, 2014).…”

Section: Introductionmentioning

confidence: 99%

Classifying Malicious Thread Behavior in PaaS Web Services

Özdemir

Sandıkkaya

Yaslan

2018

Proceedings of the 8th International Conference on Cloud Computing and Services Science

View full text Add to dashboard Cite

Multitenant structure of PaaS cloud delivery model allows customers to share the platform resources in the cloud. However, this structure requires a strong security mechanism that isolates customer applications to prevent interference between different applications. In this paper, a malicious thread behavior detection framework using machine learning algorithms is proposed to classify whether user requests are malicious. The framework uses thread metrics of worker threads and N-Gram frequencies of operations as its features. Test results are evaluated on a real-life scenario using Random Forest, Adaboost and Bagging ensemble learning algorithms and evaluated using different accuracy metrics. It is found that the malicious request detection accuracy of the proposed system is 87.6%.

show abstract

Section: Introductionmentioning

confidence: 99%