Research Student Profile

Home People Profile...

Dr Burhan Al-Bayati PhD

Research Student

Brief biographical information

Access thesis on-line

Continuous Identity Verification in Cloud Computing Services

Cloud computing has become a hugely popular new paradigm for hosting and delivering services over the internet for individuals and organisations with low cost. However, security is a sensitive issue in cloud computing, as it its services remain accessible to anyone after initial authenticated login and for significant periods. This has led to an increase in the number of attacks on sensitive customer information. This research identified biometric approaches as a possible solution for security to be maintained beyond the point of entry. Specifically, behaviour profiling has been proposed and applied across various other applications in the area of Transparent Authentication Systems (TAS’s) and Intrusion Detection Systems (IDS’s) to detect account misuse. However, little research has sought to implement this technique within cloud computing services to detect misuse. This research proposes a novel continuous identity verification system as a supporting factor to protect cloud users by operating transparently to detect ab-normal access. The research examines the feasibility of applying a behavioural profiling technique on cloud users with respect to Software as a Service (SaaS) and Infrastructure as a Service (IaaS). Two real-life datasets were collected from 30 and 60 users for SaaS and IaaS studies, respectively. A thorough design and investigation of the biometric techniques was undertaken, including description statistics analysis and pattern classification optimisation. A number of factors were analysed to evaluate the impact on system performance, such as volume of data and type of sample selection. On average, using random sampling, the best experimental result achieved an EER (Equal Error Rate) of as low as 5.8%; six users experienced EERs equal to or less than 0.3%. Moreover, the IaaS study achieved a higher performance than the SaaS study with an overall EER of 0.32%. Based on the intensive analysis of the experimental performance of SaaS and IaaS studies, it has been identified that changes in user behaviour over time can negatively affect the performance of the suggested technique. Therefore, a dynamic template renewal procedure has been proposed as a novel solution to keep recent user behaviour updated in the current users’ templates. The practical experimental result using the more realistic time-series sampling methodology has shown the validity of the proposed solution with higher accuracy of 5.77 % EER.

Dr Burhan Al-Bayati

Director of studies: Prof. Nathan L Clarke
Other supervisors: Dr Paul S Haskell-Dowland, Dr Fudong Li

Journal papers

Adaptive Behavioral Profiling for Identity Verification in Cloud Computing: A Model and Preliminary Analysis
Al-Bayati B, Clarke NL, Haskell-Dowland PS (Dowland PS)
GSTF Journal on Computing (JOC), ISSN:2251-3043, Vol. 5, Iss.1, pp21-28, 2016
Winner of the Best Student Paper award at the 7th Annual International Conference on ICT: Big Data, Cloud and Security (ICT-BDCS 2016).
More details | External link available

1 Journal papers

Conference papers

Misuse Detection in a Simulated IaaS Environment
Al-Bayati B, Clarke NL, Haskell-Dowland PS (Dowland PS), Li F
1st International Workshop on Emerging Technologies for Authorization and Authentication, ISBN: 978-3-030-04371-1, pp103-115, 2018
More details | External link available

Continuous identity verification in cloud storage services using behavioural profiling
Al-Bayati B, Clarke NL, Haskell-Dowland PS (Dowland PS), Li F
17th European Conference on Cyber Warfare and Security ECCWS 2018, 28-29 June, ISBN: 978-1-911218-85-2, pp1-10, 2018
More details | External link available

2 Conference papers

3 publication(s) - all categories.