Your search keyword '"Saeed A. Alqahtani"' showing total 4 results

1. A comparative analysis of different classification techniques for cloud intrusion detection systems' alerts and fuzzy classifiers

Author

Robert John and Saeed M. Alqahtani

Subjects

Soft computing, Computer science, Network security, business.industry, Decision tree, Intrusion detection system, computer.software_genre, Cross-validation, Naive Bayes classifier, Statistical classification, C4.5 algorithm, Data mining, business, computer

Abstract

Intrusion detection system (IDS) as one of huge research problem in network security is the most effective tool of protection. It is a method of parsing network traffic data to detect security abuses. Data mining can play a very significant role in evolving an IDS. The dataset of IDSs or soft computing techniques based IDS can be classified into normal and abnormal traffic in order for generated alerts to detect threats. In this paper, we utilised the most common classification algorithms: Decision Tree (J48), Naive Bayes, OneR, and K-Nearest Neighbour (K-NN). These algorithms were chosen after investigating the most effective classification algorithms that are widely used. The aim of this study is to present a comparative study for the performance of each system that was gained from our previous experiments: SnortIDS, SuricataIDS, FL-SnortIDS, and FL-SuricataIDS in order to test which classifier algorithm is the best for our systems results, and investigate which system presents significant results. The performance of these classification algorithms was evaluated using 10-fold cross validation. Experiments and assessments of these methods were performed in the WEKA environment using the ISCX dataset.

Published

2017

2. An Intelligent Intrusion Detection System for Cloud Computing (SIDSCC)

Author

Robert John, Maqbool Al Balushi, and Saeed M. Alqahtani

Subjects

Cloud computing security, business.industry, Network security, Computer science, Denial-of-service attack, Cloud computing, Intrusion detection system, Computer security, computer.software_genre, Grid, Host-based intrusion detection system, Virtual machine, Server, Cloud testing, Intrusion prevention system, business, computer, Computer network

Abstract

Cloud computing is a distributed architecture that has shared resources, software, and information. There exists a great number of implementations and research for Intrusion Detection Systems (IDS) in grid and cloud environments, however they are limited in addressing the requirements for an ideal intrusion detection system. Security issues in Cloud Computing (CC) have become a major concern to its users, availability being one of the key security issues. Distributed Denial of Service (DDoS) is one of these security issues that poses a great threat to the availability of the cloud services. The aim of this research is to evaluate the performance of IDS in CC when the DDoS attack is detected in a private cloud, named Saa SCloud. A model has been implemented on three virtual machines, Saa SCloud Model, DDoS attack Model, and IDSServer Model. Through this implementation, Service Intrusion Detection System in Cloud Computing (SIDSCC) will be proposed, investigated and evaluated.

Published

2014

3. An Intelligent Intrusion Prevention System for Cloud Computing (SIPSCC)

Author

Maqbool Al Balushi, Saeed M. Alqahtani, and Robert John

Subjects

Cloud computing security, Computer science, business.industry, Cloud computing, Intrusion detection system, computer.software_genre, Computer security, Host-based intrusion detection system, SQL injection, Virtual machine, Server, The Internet, Intrusion prevention system, business, computer

Abstract

Cloud computing is a fast growing IT model for the exchange and delivery of different services through the Internet. However there is a plethora of security concerns in cloud computing which still need to be tackled (e.g. confidentiality, auditability and Privileged User Access). To detect and prevent such issues, the Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) are effective mechanism against attacks such as SQL Injection. This study proposes a new service of IPS that prevents SQL injections when it comes over cloud computing website(CCW) using signature-based devices approach. A model has been implemented on three virtual machines. Through this implementation, a service-based intrusion prevention system in cloud computing (SIPSCC) is proposed, investigated and evaluated from three perspectives the vulnerability detection, average time, and false positives.

Published

2014

4. DRDE: Dual Run Distribution Based Encoding Scheme for Sustainable IoT Applications

Author

Pratham Majumder, Punyasha Chatterjee, Saurav Mallik, Amal Al-Rasheed, Mohamed Abbas, Malak Saeed M. Alqahtani, and Ben Othman Soufiene

Subjects

Energy-efficient communication, wireless sensor networks, Internet of Things, sustainable computing, sensor data correlation, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Nowadays, data is ubiquitous and has a significant influence on our day-to-day activities due to the emergence of high speed internet and widespread use of sensor-enabled Internet of Things (IoT) devices. Owing to major improvement in sampling rate of sensors in recent years, a low variation of the sensed physical parameters is witnessed during a small time interval of observation, which in turn shows high correlation in time domain. Data-critical applications like personal healthcare monitoring, video surveillance, and other applications where data dropping creates significant barriers are attracted by high correlation data. However, due to their power-constrained nature, such applications do not benefit much from the transmission of redundant data. The ideal solution to this problem could possibly be achieved by adopting typical lossless source coding strategy with low-complex design. This paper presents a novel encoding scheme termed as Dual Run Distribution based Encoding (DRDE) scheme by exploiting high correlation of sensor data to suitably encode them using symbol run statistics, leading to a reduced length of data with a very large percentage of 0s. Employing silent symbol based communication, the transmitter can be kept in silent state during periods of the most dominant symbol ’0’ in the encoded messages and using a hybrid $FSK-ASK$ modulation/demodulation technique for communication with a non-coherent receiver results in a significant reduction in transmitter energy. We simulate the proposed sensor data encoding technique on real-life data with low-cost, low data-rate transceivers like CC2420. Simulation results show about 88% (theoretical) and 79-82% (practical) savings in transmitter and 12% (theoretical) 23.5% (practical) savings in receiver energy over conventional BFSK with real-life sensor dataset. Furthermore, our proposed method outperforms in terms of overall energy savings and reduction of $CO_{2}$ footprint, generating 1.48 – 0.041 mg/day, which is 78% lesser than conventional BFSK modulation scheme, making our proposed scheme suitable for sustainable IoT applications in WSN compared to existing schemes. Furthermore, we investigate the influence of various data compression algorithms on computation time, CPU power consumption, and transmission cost on an LPC2148 microcontroller built upon a 16-bit/32-bit ARM7TDMI chipset.

Published

2023