A Novel Hybrid Mobile Agent Based Distributed Intrusion Detection System
The first generation of Mobile Agents based Intrusion
Detection System just had two components namely data collection
and single centralized analyzer. The disadvantage of this type of
intrusion detection is if connection to the analyzer fails, the entire
system will become useless. In this work, we propose novel hybrid
model for Mobile Agent based Distributed Intrusion Detection
System to overcome the current problem. The proposed model has
new features such as robustness, capability of detecting intrusion
against the IDS itself and capability of updating itself to detect new
pattern of intrusions. In addition, our proposed model is also capable
of tackling some of the weaknesses of centralized Intrusion Detection
System models.
[1] Peter Braun, Wilhelm R. Rossak, Mobile Agents: Basic Concepts,
Mobility Models, and the Tracy Toolkit, published by Morgan
Kaufmann (December 22, 2004), ISBN-10: 1558608176.
[2] Andreas Fuchsberger, "Intrusion Detection Systems and Intrusion
Prevention Systems"; Information Security Group, Royal Holloway,
University of London, Egham, Surrey TW20 0EX, United Kingdom
2005.
[3] J. P. Anderson. Computer Security Threat Monitoring and Surveillance.
Technical Report, James P. Anderson Co., April 1980.
[4] Richard A. Kemmerer and Giovanni Vigna, Intrusion detection: a brief
history and overview Reliable Software Group, Computer Science
Department, University of California Santa Barbara 2003.
[5] Geetha Ramachandran and Delbert Hart, A P2P Intrusion Detection
System based on Mobile Agents, 2004 ACM 1-58113-870-9/04/04.
[6] Snort, (Oct 2005). Online. http://www.snort.org/,(March 2007).
[7] S.Stainford-Chen, Steven Cheung, et.al. GrIDS-Graph Based Intrusion
Detection System for Large Networks. In the Proceedings of the 19th
National Information Systems Security Conference, Baltimore, MD,
October 1996.
[8] Pradeep Kannadiga and Mohammad Zulkernine School of Computing
Queen-s University, Kingston Ontario, Canada K7L 3N, DIDMA: A
Distributed Intrusion Detection System Using Mobile Agents, 2005
IEEE.
[9] J.Balasubramainyan, J.O. Garcia-Fernandez, D.Isacoff, E.H. Spafford,
D.Zamboni, An architecture of intrusion detection using autonomous
agents, Department of Computer Science, Purdue University coast TR
98-05, 1998.
[1] Peter Braun, Wilhelm R. Rossak, Mobile Agents: Basic Concepts,
Mobility Models, and the Tracy Toolkit, published by Morgan
Kaufmann (December 22, 2004), ISBN-10: 1558608176.
[2] Andreas Fuchsberger, "Intrusion Detection Systems and Intrusion
Prevention Systems"; Information Security Group, Royal Holloway,
University of London, Egham, Surrey TW20 0EX, United Kingdom
2005.
[3] J. P. Anderson. Computer Security Threat Monitoring and Surveillance.
Technical Report, James P. Anderson Co., April 1980.
[4] Richard A. Kemmerer and Giovanni Vigna, Intrusion detection: a brief
history and overview Reliable Software Group, Computer Science
Department, University of California Santa Barbara 2003.
[5] Geetha Ramachandran and Delbert Hart, A P2P Intrusion Detection
System based on Mobile Agents, 2004 ACM 1-58113-870-9/04/04.
[6] Snort, (Oct 2005). Online. http://www.snort.org/,(March 2007).
[7] S.Stainford-Chen, Steven Cheung, et.al. GrIDS-Graph Based Intrusion
Detection System for Large Networks. In the Proceedings of the 19th
National Information Systems Security Conference, Baltimore, MD,
October 1996.
[8] Pradeep Kannadiga and Mohammad Zulkernine School of Computing
Queen-s University, Kingston Ontario, Canada K7L 3N, DIDMA: A
Distributed Intrusion Detection System Using Mobile Agents, 2005
IEEE.
[9] J.Balasubramainyan, J.O. Garcia-Fernandez, D.Isacoff, E.H. Spafford,
D.Zamboni, An architecture of intrusion detection using autonomous
agents, Department of Computer Science, Purdue University coast TR
98-05, 1998.
@article{"International Journal of Information, Control and Computer Sciences:52180", author = "Amir Vahid Dastjerdi and Kamalrulnizam Abu Bakar", title = "A Novel Hybrid Mobile Agent Based Distributed Intrusion Detection System", abstract = "The first generation of Mobile Agents based Intrusion
Detection System just had two components namely data collection
and single centralized analyzer. The disadvantage of this type of
intrusion detection is if connection to the analyzer fails, the entire
system will become useless. In this work, we propose novel hybrid
model for Mobile Agent based Distributed Intrusion Detection
System to overcome the current problem. The proposed model has
new features such as robustness, capability of detecting intrusion
against the IDS itself and capability of updating itself to detect new
pattern of intrusions. In addition, our proposed model is also capable
of tackling some of the weaknesses of centralized Intrusion Detection
System models.", keywords = "Distributed Intrusion Detection System, Mobile
Agents, Network Security.", volume = "2", number = "9", pages = "2932-4", }