A unified host-based intrusion detection framework using spark in cloud

Ming Liu; Zhi Xue; Xiangjian He

doi:10.1109/TrustCom50675.2020.00026

A unified host-based intrusion detection framework using spark in cloud

Ming Liu, Zhi Xue, Xiangjian He

Research output: Chapter in Book/Conference proceeding › Conference contribution › peer-review

4 Citations (Scopus)

Abstract

The host-based intrusion detection system (HIDS) is an essential research domain of cybersecurity. HIDS examines log data of hosts to identify intrusive behaviors. The detection efficiency is a significant factor of HIDS. Traditionally, HIDS is often installed with a standalone mode. Training detection engines with a large amount of data on a single physical computer with limited computing resources may be time-consuming. Therefore, this paper offers a unified HIDS framework based on Spark and deployed in the Google cloud. The framework includes a unified machine learning pipeline to implement scalable and efficient HIDS.

Original language	English
Title of host publication	Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020
Editors	Guojun Wang, Ryan Ko, Md Zakirul Alam Bhuiyan, Yi Pan
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	97-103
Number of pages	7
ISBN (Electronic)	9781665403924
DOIs	https://doi.org/10.1109/TrustCom50675.2020.00026
Publication status	Published - Dec 2020
Externally published	Yes
Event	19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 - Guangzhou, China Duration: 29 Dec 2020 → 1 Jan 2021

Publication series

Name	Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020

Conference

Conference	19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020
Country/Territory	China
City	Guangzhou
Period	29/12/20 → 1/01/21

Keywords

Intrusion detection
Scalable
System call

ASJC Scopus subject areas

Computer Networks and Communications
Software
Information Systems and Management
Safety, Risk, Reliability and Quality

Access to Document

10.1109/TrustCom50675.2020.00026

Cite this

Liu, M., Xue, Z., & He, X. (2020). A unified host-based intrusion detection framework using spark in cloud. In G. Wang, R. Ko, M. Z. A. Bhuiyan, & Y. Pan (Eds.), Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 (pp. 97-103). Article 9342968 (Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/TrustCom50675.2020.00026

Liu, Ming ; Xue, Zhi ; He, Xiangjian. / A unified host-based intrusion detection framework using spark in cloud. Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020. editor / Guojun Wang ; Ryan Ko ; Md Zakirul Alam Bhuiyan ; Yi Pan. Institute of Electrical and Electronics Engineers Inc., 2020. pp. 97-103 (Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020).

@inproceedings{290476fb4a664af59eaf12f4391e784f,

title = "A unified host-based intrusion detection framework using spark in cloud",

abstract = "The host-based intrusion detection system (HIDS) is an essential research domain of cybersecurity. HIDS examines log data of hosts to identify intrusive behaviors. The detection efficiency is a significant factor of HIDS. Traditionally, HIDS is often installed with a standalone mode. Training detection engines with a large amount of data on a single physical computer with limited computing resources may be time-consuming. Therefore, this paper offers a unified HIDS framework based on Spark and deployed in the Google cloud. The framework includes a unified machine learning pipeline to implement scalable and efficient HIDS.",

keywords = "Intrusion detection, Scalable, System call",

author = "Ming Liu and Zhi Xue and Xiangjian He",

note = "Publisher Copyright: {\textcopyright} 2020 IEEE.; 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020 ; Conference date: 29-12-2020 Through 01-01-2021",

year = "2020",

month = dec,

doi = "10.1109/TrustCom50675.2020.00026",

language = "English",

series = "Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "97--103",

editor = "Guojun Wang and Ryan Ko and Bhuiyan, {Md Zakirul Alam} and Yi Pan",

booktitle = "Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020",

address = "United States",

}

Liu, M, Xue, Z & He, X 2020, A unified host-based intrusion detection framework using spark in cloud. in G Wang, R Ko, MZA Bhuiyan & Y Pan (eds), Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020., 9342968, Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020, Institute of Electrical and Electronics Engineers Inc., pp. 97-103, 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020, Guangzhou, China, 29/12/20. https://doi.org/10.1109/TrustCom50675.2020.00026

A unified host-based intrusion detection framework using spark in cloud. / Liu, Ming; Xue, Zhi; He, Xiangjian.
Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020. ed. / Guojun Wang; Ryan Ko; Md Zakirul Alam Bhuiyan; Yi Pan. Institute of Electrical and Electronics Engineers Inc., 2020. p. 97-103 9342968 (Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020).

Research output: Chapter in Book/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A unified host-based intrusion detection framework using spark in cloud

AU - Liu, Ming

AU - Xue, Zhi

AU - He, Xiangjian

PY - 2020/12

Y1 - 2020/12

N2 - The host-based intrusion detection system (HIDS) is an essential research domain of cybersecurity. HIDS examines log data of hosts to identify intrusive behaviors. The detection efficiency is a significant factor of HIDS. Traditionally, HIDS is often installed with a standalone mode. Training detection engines with a large amount of data on a single physical computer with limited computing resources may be time-consuming. Therefore, this paper offers a unified HIDS framework based on Spark and deployed in the Google cloud. The framework includes a unified machine learning pipeline to implement scalable and efficient HIDS.

AB - The host-based intrusion detection system (HIDS) is an essential research domain of cybersecurity. HIDS examines log data of hosts to identify intrusive behaviors. The detection efficiency is a significant factor of HIDS. Traditionally, HIDS is often installed with a standalone mode. Training detection engines with a large amount of data on a single physical computer with limited computing resources may be time-consuming. Therefore, this paper offers a unified HIDS framework based on Spark and deployed in the Google cloud. The framework includes a unified machine learning pipeline to implement scalable and efficient HIDS.

KW - Intrusion detection

KW - Scalable

KW - System call

UR - http://www.scopus.com/inward/record.url?scp=85101189510&partnerID=8YFLogxK

U2 - 10.1109/TrustCom50675.2020.00026

DO - 10.1109/TrustCom50675.2020.00026

M3 - Conference contribution

AN - SCOPUS:85101189510

T3 - Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020

SP - 97

EP - 103

BT - Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020

A2 - Wang, Guojun

A2 - Ko, Ryan

A2 - Bhuiyan, Md Zakirul Alam

A2 - Pan, Yi

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020

Y2 - 29 December 2020 through 1 January 2021

ER -

Liu M, Xue Z, He X. A unified host-based intrusion detection framework using spark in cloud. In Wang G, Ko R, Bhuiyan MZA, Pan Y, editors, Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020. Institute of Electrical and Electronics Engineers Inc. 2020. p. 97-103. 9342968. (Proceedings - 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2020). doi: 10.1109/TrustCom50675.2020.00026

A unified host-based intrusion detection framework using spark in cloud

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this