Real-time DDoS flood attack monitoring and detection (RT-AMD) model for cloud computing

Bamasag, Omaimah; Alsaeedi, Alaa; Munshi, Asmaa; Alghazzawi, Daniyal M.; Alshehri, Suhair; Jamjoom, Arwa

doi:10.7717/peerj-cs.814

Cited by 11 publications

(3 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The field of intrusion detection systems is widely studied in the literature. Some research papers, such as [15][16][17], cover the use of ML and DL to improve the network security of cloud computing.…”

Section: Related Workmentioning

confidence: 99%

“…In [16], the authors demonstrate a proposed real-time monitoring and detection "RT-AMD" of DDoS attacks on cloud computing using machine learning algorithms and an intrusion detection system, which uses anomaly-based detection. They selected machine learning classifiers of naïve Bayes (NB), decision tree (DT), k-neighbors (KN), and random forest (RF) to build a predictive model and compare them by two primary criteria: accuracy and detection rate.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Deep Learning Approach for Intrusion Detection Systems in Cloud Computing Environments

Aljuaid,

Alshamrani

2024

Applied Sciences

View full text Add to dashboard Cite

Cloud computing services have become indispensable to people’s lives. Many of their activities are performed through cloud services, from small companies to large enterprises and individuals to government agencies. It has enabled clients to use companies’ services on demand at the lowest cost anywhere, anytime, over the Internet. Despite these advantages, cloud networks are vulnerable to many types of attacks. However, as the adoption of cloud services accelerates, the risks associated with these services have also increased. For this reason, solutions have been implemented to improve cloud security, such as monitoring networks, the backbone of the cloud infrastructure, and detecting and classifying cyberattacks. Therefore, an intrusion detection system (IDS) is one of the essential defenses for detecting attacks in the cloud computing network. Current IDSs encounter some challenges in handling and simultaneously analyzing the large scale of traffic found in the cloud environment, and this affects the accuracy of cyberattack detection. Therefore, this research proposes a deep learning-based model by leveraging advanced convolutional neural networks (CNNs)-based model architecture to detect cyberattacks in the cloud environment efficiently. The proposed CNN-based model for intrusion detection consists of multiple significant stages: dataset collection, preprocessing, the SMOTE balance data strategy, feature selection, model training, testing, and performance evaluation. Experiments have demonstrated that the proposed model is highly effective in protecting cloud networks against various potential attacks. With over 98.67% accuracy, precision, and recall, the model has proven its ability to detect and classify network intrusions. Detailed analyses show that the model is proficient in securing cloud security measures and mitigating the risks associated with evolving security threats.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

A Deep Learning Approach for Intrusion Detection Systems in Cloud Computing Environments

Aljuaid,

Alshamrani

2024

Applied Sciences

View full text Add to dashboard Cite

show abstract

“…Peer-to-peer file-sharing systems are still the most popular method for any type of content sharing over the internet, especially using the BitTorrent protocol. Like any other technology using the internet, it is vulnerable to attacks, suffering from different kinds of denial-of-service attacks, such as query flooding and pollution [3]. For example, in the content pollution attack, a malicious user publishes a large number of decoys (same or similar meta-data) so that queries of a given content return predominantly fake/corrupted copies [4].…”

Section: Introductionmentioning

confidence: 99%

Torrent Poisoning Protection with a Reverse Proxy Server

et al. 2022

View full text Add to dashboard Cite

A Distributed Denial-of-Service attack uses multiple sources operating in concert to attack a network or site. A typical DDoS flood attack on a website targets a web server with multiple valid requests, exhausting the server’s resources. The participants in this attack are usually compromised/infected computers controlled by the attackers. There are several variations of this kind of attack, and torrent index poisoning is one. A Distributed Denial-of-Service (DDoS) attack using torrent poisoning, more specifically using index poisoning, is one of the most effective and disruptive types of attacks. These web flooding attacks originate from BitTorrent-based file-sharing communities, where the participants using the BitTorrent applications cannot detect their involvement. The antivirus and other tools cannot detect the altered torrent file, making the BitTorrent client target the webserver. The use of reverse proxy servers can block this type of request from reaching the web server, preventing the severity and impact on the service of the DDoS. In this paper, we analyze a torrent index poisoning DDoS to a higher education institution, the impact on the network systems and servers, and the mitigation measures implemented.

show abstract

Machine Learning-Based Identification of DDoS Flood Attack in eHealth Cloud Environment

Bose,

Roy,

Bose

2023

Lecture Notes in Networks and Systems

View full text Add to dashboard Cite

Real-time DDoS flood attack monitoring and detection (RT-AMD) model for cloud computing

Cited by 11 publications

References 31 publications

A Deep Learning Approach for Intrusion Detection Systems in Cloud Computing Environments

A Deep Learning Approach for Intrusion Detection Systems in Cloud Computing Environments

Torrent Poisoning Protection with a Reverse Proxy Server

Machine Learning-Based Identification of DDoS Flood Attack in eHealth Cloud Environment

Contact Info

Product

Resources

About