An agent-based hybrid intrusion detection system

Intrusion Detection Systems is defined as a component that analyses system and user operations in computer and network system to protect it from possible intrusions. Current intrusion detection technologies have several shortcomings. Applying mobile agents to intrusion detection design is step forwa...

Full description

Saved in:
Bibliographic Details
Published inResearch for rural development : annual ... international scientific conference proceedings no. 17/2011; pp. 191 - 195
Main Author Paulins, N., Latvia Univ. of Agriculture, Jelgava (Latvia)
Format Journal Article
LanguageEnglish
Published Jelgava (Latvia) Latvia University of Agriculture 2011
Subjects
COMPUTADOR
COMPUTER SOFTWARE
COMPUTERS
http://www.fao.org/aos/agrovoc#c_12103
http://www.fao.org/aos/agrovoc#c_1799
http://www.fao.org/aos/agrovoc#c_24008
http://www.fao.org/aos/agrovoc#c_4911
http://www.fao.org/aos/agrovoc#c_50266
http://www.fao.org/aos/agrovoc#c_6513
HYBRID INTRUSION DETECTION
INTRUSION DETECTION SYSTEMS
INVESTIGACION
LATVIA
LETONIA
LETTONIE
LOGICIEL
MOBILE AGENTS
MONITORING
NETWORK SECURITY
NETWORKS
ORDINATEUR
PROGRAMAS DE ORDENADOR
RECHERCHE
REDES
RESEAU
SURVEILLANCE
VIGILANCIA
Online AccessGet full text
ISSN1691-4031

Cover

More Information
Summary:Intrusion Detection Systems is defined as a component that analyses system and user operations in computer and network system to protect it from possible intrusions. Current intrusion detection technologies have several shortcomings. Applying mobile agents to intrusion detection design is step forward on better intrusion detection. Mobile-agent based distributed intrusion detection systems are very promising for the following reasons: reduction of data movement, load-balance, flexibility, fault-tolerance, detection of distributed attacks. Hybrid intrusion detection is defined by both the method used to detect attacks and the placement of the system on the network. Intrusion detection system may perform either misuse detection or anomaly detection and may be deployed as network-based or host-based system. This paper proposes to distribute classical intrusion detection model with mobile agents making an agent-based hybrid intrusion detection system. The proposed model can help detect simple intrusions in early stage and also distributed intrusions by monitoring several subjects installed on network. Main benefit from mobile agents in such system is ability to generate separate services for specific tasks and analyze unknown user patterns with several methods of artificial intelligence.
Bibliography:C30
11/897 Call Number
http://www.llu.lv/getfile.php?id=44020
ISSN:1691-4031