A mobile approach for the intrusion detection

The AAFID structure is a distributed monitoring and intrusion detection system. The first concept comes from CERIAS group at Purdue University. This architecture employs small stand-alone programs (Agents) to perform policy of security in the hosts of a network. AAFID is designed as a hierarchical structure of components with agents at the lowest level of the tree performing the most basic functions. It was the first architecture that proposed the use of autonomous agents for doing intrusion detection. It constitutes a true support for research and testing of intrusion detection algorithms and mechanisms. We describe the AAFID architecture with these existing prototypes and we start after this description to define our new version of AAFID (AAFID3), which the strategy of operation is improved much compared to old. This metric is the mobility for agent that is implemented in Java JINI technology.

[1]  Eugene H. Spafford,et al.  Intrusion detection using autonomous agents , 2000, Comput. Networks.

[2]  Sandeep Kumar,et al.  Classification and detection of computer intrusions , 1996 .

[3]  Eugene H. Spafford,et al.  Defending a Computer System Using Autonomous Agents , 1995 .

[4]  Peter G. Neumann,et al.  EMERALD: Event Monitoring Enabling Responses to Anomalous Live Disturbances , 1997, CCS 2002.

[5]  Karl N. Levitt,et al.  The Design of GrIDS: A Graph-Based Intrusion Detection System , 2007 .

[6]  Navdeep Singh,et al.  A Survey of Intrusion Detection Techniques , 2013 .

[7]  Biswanath Mukherjee,et al.  A network security monitor , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[8]  Eugene H. Spafford,et al.  An architecture for intrusion detection using autonomous agents , 1998, Proceedings 14th Annual Computer Security Applications Conference (Cat. No.98EX217).

[9]  J. F. McClary,et al.  NADIR: An automated system for detecting network intrusion and misuse , 1993, Comput. Secur..