Research Article Open Access

INTRUSION DETECTION SYSTEM IN SECURE SHELL TRAFFIC IN CLOUD ENVIRONMENT

Mehdi Barati1, Azizol Abdullah1, NurIzura Udzir1, Mostafa Behzadi1, Ramlan Mahmod1 and Norwati Mustapha1
  • 1 , Malaysia
Journal of Computer Science
Volume 10 No. 10, 2014, 2029-2036

DOI: https://doi.org/10.3844/jcssp.2014.2029.2036

Submitted On: 12 April 2014 Published On: 26 June 2014

How to Cite: Barati, M., Abdullah, A., Udzir, N., Behzadi, M., Mahmod, R. & Mustapha, N. (2014). INTRUSION DETECTION SYSTEM IN SECURE SHELL TRAFFIC IN CLOUD ENVIRONMENT. Journal of Computer Science, 10(10), 2029-2036. https://doi.org/10.3844/jcssp.2014.2029.2036

Abstract

Due to growth of Cloud computing usage, the need to apply encrypted protocols to provide confidentiality and integrity of data increases dramatically. Attacker can take advantage of these protocols to hide the intrusion and evade detection. Many traditional attack detection techniques have been proposed to provide security in the networks but none of them can be implemented properly in encrypted networks. This study investigates a popular attack in Secure Shell (SSH), known as brute force attack and provides an efficient method to detect this attack. Brute force attack is launched by implementing a client-server SSH model in a private Cloud environment and the traffics regarding attack and normal are captured on the server. Then, representative features of traffic are extracted and used by the Multi-Layer Perceptron model of Artificial Neural Network to classify the attack and normal traffic. Results gained by this method show that the proposed model is successfully capable to detect this attack with high accuracy and low false alarm.

  • 1,196 Views
  • 1,522 Downloads
  • 3 Citations

Download

Keywords

  • Brute Force Attack
  • Intrusion Detection System
  • Cloud Environment
  • Encrypted Traffic
  • SSH Traffic
  • Machine Learning
  • ANN