Advancement of Computer Technology and its Applications (e-ISSN:2584-1262)

Cloud computing is pivoting the landscape of digital technologies with a vast amount of migration by businesses to ensure flexibility and adaptation to changing work demands. Vulnerabilities in cloud applications pose a significant challenge especially the ones leading to Denial of service (DOS) attacks. This work leverages on the use of an ensemble-based Machine learning model for predicting the vulnerabilities inherent within the software-as-a-service (SAAS) layer of the cloud. The model was trained and tested on source data of the National vulnerability database and validated using standard metrics to evaluate its performance and ability to predict new vulnerabilities. The results yielded a higher performance of the ensemble model than the single classification algorithms.

Jabbar, M. A., Aluvalu, R., Satyanarayana, S., and Reddy, S. (2017). “RFAODE: A novel ensemble intrusion detection system”. Science Direct. Procedia Computer Science, 115, 226–234. https://doi.org/10.1016/j.procs.2017.09.129

Z. Han, X. Li, Z. Xing, H. Liu, and Z. Feng, ``Learning to predict severity of software vulnerability using only vulnerability description,'' in Proc. IEEE Int. Conf. Softw. Maintenance Evol. (ICSME), Sep. 2017, pp. 125_136.

R.Deepthi Reddy, Software vulnerability analysis using machine learning techniques

S. Krishnaveni1*, S. Prabakaran2 and S. Sivamohan (2016), “Automated Vulnerability Detection and Prediction by Security Testing for Cloud SAAS”, Indian journal of science and technology. Vol 9 issue 1, Dec 2016

5. R. Scandariat, j Walden ,(2014) Predicting Vulnerable Software Components via text mining published in IEEE transactions on software Engineering, International Journal of Computer Sciences and Engineering , Volume-6, Issue-3

P.S Suryateja (2018), “Threats and Vulnerabilities of Cloud Computing: A Review “,CSE Dept., Vishnu Institute of Technology, Bhimavaram, India www.ijcseonline.org

7. T Marjanov, I Pashcenko, F Massacci, (2022), Machine Learning for Source code Vulnerability Detection.PP. 60-76, Vol 20,IEEE Security and Privacy.

R. Goel, M. Garuba and A. Girma, (2014) "Cloud Computing Vulnerability: DDoS as Its Main Security Threat, and Analysis of IDS as a Solution Model," 11th International Conference on Information Technology: New Generations, Las Vegas

9, R Sagar , Rutvij Jhaveri , and Carlos Borrego (2020) “Applications in security and evasion in Machine learning, A survey” Article by MDPI

K.B. Saroj (2018) ” Intrusion Detection Using Machine Learning: A Comparison Study” CSE dept, International Journal of Pure and Applied Mathematics Volume 118 No. 19 2018, 101-114