In spite of the tangible advantages of cloud computing, it is still vulnerable to potential attacks and threats. In light of this, security\nhas turned into one of the main concerns in the adoption of cloud computing. Therefore, an anomaly detection method plays an\nimportant role in providing a high protection level for network security. One of the challenges in anomaly detection, which has\nnot been seriously considered in the literature, is applying the dynamic nature of cloud traffic in its prediction while maintaining\nan acceptable level of accuracy besides reducing the computational cost. On the other hand, to overcome the issue of additional\ntraining time, introducing a high-speed algorithm is essential. In this paper, a network traffic anomaly detection model grounded in\nCatastropheTheory is proposed.This theory is effective in depicting sudden change processes of the network due to the dynamic\nnature of the cloud. Exponential Moving Average (EMA) is applied for the state variable in sliding window to better show the\ndynamicity of cloud network traffic. Entropy is used as one of the control variables in catastrophe theory to analyze the distribution\nof traffic features. Our work is compared with Wei Xiong et al.â??s Catastrophe Theory and achieved a maximum improvement in\nthe percentage of Detection Rate in week 4 Wednesday (7.83%) and a 0.31% reduction in False Positive Rate in week 5 Monday.\nAdditional accuracy parameters are checked and the impact of sliding window size in sensitivity and specificity is considered.
Loading....