High Rate Denial-of-Service Attack Detection System for Cloud Environment Using Flume and Spark

Janitza Punto Gutierrez; Kilhung Lee

doi:10.3745/JIPS.03.0164

High Rate Denial-of-Service Attack Detection System for Cloud Environment Using Flume and Spark

Janitza Punto Gutierrez, Kilhung Lee

Dept. of Information and Communication Engineering

Seoul National University of Science and Technology (SNUST)

Research output: Contribution to journal › Article › peer-review

4 Scopus citations

Abstract

Nowadays, cloud computing is being adopted for more organizations. However, since cloud computing has a virtualized, volatile, scalable and multi-tenancy distributed nature, it is challenging task to perform attack detection in the cloud following conventional processes. This work proposes a solution which aims to collect web server logs by using Flume and filter them through Spark Streaming in order to only consider suspicious data or data related to denial-of-service attacks and reduce the data that will be stored in Hadoop Distributed File System for posterior analysis with the frequent pattern (FP)-Growth algorithm. With the proposed system, we can address some of the difficulties in security for cloud environment, facilitating the data collection, reducing detection time and consequently enabling an almost real-time attack detection.

Original language	English
Pages (from-to)	675-689
Number of pages	15
Journal	Journal of Information Processing Systems
Volume	17
Issue number	4
DOIs	https://doi.org/10.3745/JIPS.03.0164
State	Published - Aug 2021

Keywords

Denial-of-Service
FP-Growth Pre-filtering
HDFS Spark Streaming
Web Log

Access to Document

10.3745/JIPS.03.0164

Cite this

@article{0d573dc2e1474ca08d60220dcbf43cda,

title = "High Rate Denial-of-Service Attack Detection System for Cloud Environment Using Flume and Spark",

abstract = "Nowadays, cloud computing is being adopted for more organizations. However, since cloud computing has a virtualized, volatile, scalable and multi-tenancy distributed nature, it is challenging task to perform attack detection in the cloud following conventional processes. This work proposes a solution which aims to collect web server logs by using Flume and filter them through Spark Streaming in order to only consider suspicious data or data related to denial-of-service attacks and reduce the data that will be stored in Hadoop Distributed File System for posterior analysis with the frequent pattern (FP)-Growth algorithm. With the proposed system, we can address some of the difficulties in security for cloud environment, facilitating the data collection, reducing detection time and consequently enabling an almost real-time attack detection.",

keywords = "Denial-of-Service, FP-Growth Pre-filtering, HDFS Spark Streaming, Web Log",

author = "Gutierrez, \{Janitza Punto\} and Kilhung Lee",

year = "2021",

month = aug,

doi = "10.3745/JIPS.03.0164",

language = "English",

volume = "17",

pages = "675--689",

journal = "Journal of Information Processing Systems",

issn = "1976-913X",

number = "4",

}

TY - JOUR

T1 - High Rate Denial-of-Service Attack Detection System for Cloud Environment Using Flume and Spark

AU - Gutierrez, Janitza Punto

AU - Lee, Kilhung

PY - 2021/8

Y1 - 2021/8

N2 - Nowadays, cloud computing is being adopted for more organizations. However, since cloud computing has a virtualized, volatile, scalable and multi-tenancy distributed nature, it is challenging task to perform attack detection in the cloud following conventional processes. This work proposes a solution which aims to collect web server logs by using Flume and filter them through Spark Streaming in order to only consider suspicious data or data related to denial-of-service attacks and reduce the data that will be stored in Hadoop Distributed File System for posterior analysis with the frequent pattern (FP)-Growth algorithm. With the proposed system, we can address some of the difficulties in security for cloud environment, facilitating the data collection, reducing detection time and consequently enabling an almost real-time attack detection.

AB - Nowadays, cloud computing is being adopted for more organizations. However, since cloud computing has a virtualized, volatile, scalable and multi-tenancy distributed nature, it is challenging task to perform attack detection in the cloud following conventional processes. This work proposes a solution which aims to collect web server logs by using Flume and filter them through Spark Streaming in order to only consider suspicious data or data related to denial-of-service attacks and reduce the data that will be stored in Hadoop Distributed File System for posterior analysis with the frequent pattern (FP)-Growth algorithm. With the proposed system, we can address some of the difficulties in security for cloud environment, facilitating the data collection, reducing detection time and consequently enabling an almost real-time attack detection.

KW - Denial-of-Service

KW - FP-Growth Pre-filtering

KW - HDFS Spark Streaming

KW - Web Log

UR - http://www.scopus.com/inward/record.url?scp=85114436855&partnerID=8YFLogxK

U2 - 10.3745/JIPS.03.0164

DO - 10.3745/JIPS.03.0164

M3 - Article

AN - SCOPUS:85114436855

SN - 1976-913X

VL - 17

SP - 675

EP - 689

JO - Journal of Information Processing Systems

JF - Journal of Information Processing Systems

IS - 4

ER -

High Rate Denial-of-Service Attack Detection System for Cloud Environment Using Flume and Spark

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this