A trust-based game theoretical model for cooperative intrusion detection in multi-cloud environments
Title | A trust-based game theoretical model for cooperative intrusion detection in multi-cloud environments |
Publication Type | Conference Paper |
Year of Publication | 2018 |
Authors | Abusitta, Adel, Bellaiche, Martine, Dagenais, Michel |
Conference Name | 2018 21st Conference on Innovation in Clouds, Internet and Networks and Workshops (ICIN) |
Date Published | Feb. 2018 |
Publisher | IEEE |
ISBN Number | 978-1-5386-3458-5 |
Keywords | Bayes methods, central agent, centralized architecture, cloud computing, cloud systems, Coalitional game theory, Collaboration, complex computer systems, computer network security, computer theory, Cyber Attacks, cyber-security, Detectors, f⊘yw⊘rds-Intrusion detection systems, game theoretical model, game theory, Games, higher detection accuracy, human factors, IDS approaches, individual detection accuracy increase, Intrusion detection, multicloud environments, pubcrawl, resilience, Resiliency, Scalability, security, security of data, single cloud-based intrusion detection system, suspicious intrusions, Trust, trustworthy IDS communities, untrusted IDS |
Abstract | Cloud systems are becoming more complex and vulnerable to attacks. Cyber attacks are also becoming more sophisticated and harder to detect. Therefore, it is increasingly difficult for a single cloud-based intrusion detection system (IDS) to detect all attacks, because of limited and incomplete knowledge about attacks. The recent researches in cyber-security have shown that a co-operation among IDSs can bring higher detection accuracy in such complex computer systems. Through collaboration, a cloud-based IDS can consult other IDSs about suspicious intrusions and increase the decision accuracy. The problem of existing cooperative IDS approaches is that they overlook having untrusted (malicious or not) IDSs that may negatively effect the decision about suspicious intrusions in the cloud. Moreover, they rely on a centralized architecture in which a central agent regulates the cooperation, which contradicts the distributed nature of the cloud. In this paper, we propose a framework that enables IDSs to distributively form trustworthy IDSs communities. We devise a novel decentralized algorithm, based on coalitional game theory, that allows a set of cloud-based IDSs to cooperatively set up their coalition in such a way to make their individual detection accuracy increase, even in the presence of untrusted IDSs. |
URL | https://ieeexplore.ieee.org/document/8401625 |
DOI | 10.1109/ICIN.2018.8401625 |
Citation Key | abusitta_trust-based_2018 |
- Scalability
- Human Factors
- IDS approaches
- individual detection accuracy increase
- Intrusion Detection
- multicloud environments
- pubcrawl
- resilience
- Resiliency
- higher detection accuracy
- security
- security of data
- single cloud-based intrusion detection system
- suspicious intrusions
- trust
- trustworthy IDS communities
- untrusted IDS
- computer theory
- central agent
- centralized architecture
- Cloud Computing
- cloud systems
- Coalitional game theory
- collaboration
- complex computer systems
- computer network security
- Bayes methods
- Cyber Attacks
- Cyber-security
- Detectors
- f⊘yw⊘rds-Intrusion detection systems
- Game Theoretical Model
- game theory
- Games