Data driven detection strategy engine for better intrusion detection on cloud computing

Research output: Chapters, Conference Papers, Creative and Literary WorksRGC 32 - Refereed conference paper (with host publication)peer-review

View graph of relations

Author(s)

  • Daniel W.K. Tse
  • Lynna L.H. Zhang
  • Oscar Z.H. Cui
  • Sherry H.Z. Li

Related Research Unit(s)

Detail(s)

Original languageEnglish
Title of host publicationProceedings - Pacific Asia Conference on Information Systems, PACIS 2014
PublisherPacific Asia Conference on Information Systems
Publication statusPublished - 2014

Conference

Title18th Pacific Asia Conference on Information Systems, PACIS 2014
PlaceChina
CityChengdu
Period24 - 28 June 2014

Abstract

In this paper, we attempt to base on CIDS framework and initiate a Data Driven Detection Strategy Engine (3DSE), a new thinking on identifying suspected users by adopting Decision Tree and Logistic Regression techniques to mine the usage patterns (from audit log and alert log) of different cloud member. Moreover, according to the analytical mining results, we also propose a danger-coefficient ranking model, which allows system to adopt different security strategies to monitoring users of different security levels. Deploying this engine, cloud system can be automatically trained up and become more efficient and effective on intrusion detection.

Research Area(s)

  • Cloud computing, Coefficient Ranking, Decision tree, Intrusion detection, Logistic regression, Information Security

Citation Format(s)

Data driven detection strategy engine for better intrusion detection on cloud computing. / Tse, Daniel W.K.; Zhang, Lynna L.H.; Cui, Oscar Z.H. et al.
Proceedings - Pacific Asia Conference on Information Systems, PACIS 2014. Pacific Asia Conference on Information Systems, 2014.

Research output: Chapters, Conference Papers, Creative and Literary WorksRGC 32 - Refereed conference paper (with host publication)peer-review