DATA DRIVEN DETECTION STRATEGY ENGINE FOR BETTER INTRUSION DETECTION ON CLOUD COMPUTING

Authors

Daniel W.K Tse, City University of Hong KongFollow
Lynna L.H. Zhang, City University of Hong KongFollow
Oscar Z.H. Cui, City University of Hong KongFollow
Sherry H.Z. Li, City University of Hong KongFollow

Abstract

In this paper, we attempt to base on CIDS framework and initiate a Data Driven Detection Strategy Engine (3DSE), a new thinking on identifying suspected users by adopting Decision Tree and Logistic Regression techniques to mine the usage patterns (from audit log and alert log) of different cloud member. Moreover, according to the analytical mining results, we also propose a danger-coefficient ranking model, which allows system to adopt different security strategies to monitoring users of different security levels. Deploying this engine, cloud system can be automatically trained up and become more efficient and effective on intrusion detection.

Recommended Citation

Tse, Daniel W.K; Zhang, Lynna L.H.; Cui, Oscar Z.H.; and Li, Sherry H.Z., "DATA DRIVEN DETECTION STRATEGY ENGINE FOR BETTER INTRUSION DETECTION ON CLOUD COMPUTING" (2014). PACIS 2014 Proceedings. 360.
https://aisel.aisnet.org/pacis2014/360