论文信息 - A fault tolerance mechanism for network intrusion detection system based on intelligent agents (NIDIA)

A fault tolerance mechanism for network intrusion detection system based on intelligent agents (NIDIA)

The intrusion detection system (IDS) has as objective to identify individuals that try to use a system in way not authorized or those that have authorization to use but they abuse of their privileges. The IDS to accomplish its function must, in some way, to guarantee reliability and availability to its own application, so that it gets to give continuity to the services even in case of faults, mainly faults caused by malicious agents. This paper proposes an adaptive fault tolerance mechanism for network intrusion detection system based on intelligent agents. We propose the creation of a society of agents that monitors a system to collect information related to agents and hosts. Using the information which is collected, it is possible: to detect which agents are still active; which agents should be replicated and which strategy should be used. The process of replication depends on each type of agent, and its importance to the system at different moments of processing. We use some agents as sentinels for monitoring and thus allowing us to accomplish some important tasks such load balancing, migration, and detection of malicious agents, to guarantee the security of the proper IDS

Zair Abdelouahab | Lindonete Siqueira

[1] Staffan Haegg,et al. A Sentinel Approach to Fault Handling in Multi-Agent Systems , 1996, DAI.

[2] Zaheer Abbas Khan,et al. Decentralized architecture for fault tolerant multi agent system , 2005, Proceedings Autonomous Decentralized Systems, 2005. ISADS 2005..

[3] Rogério de Lemos,et al. An architectural support for self-adaptive software for treating faults , 2002, WOSS '02.

[4] Jun Zhang,et al. MADIDS: a novel distributed IDS based on mobile agent , 2003, OPSR.

[5] Delbert Hart,et al. A P2P intrusion detection system based on mobile agents , 2004, ACM-SE 42.

[6] Eugene H. Spafford,et al. Intrusion detection using autonomous agents , 2000, Comput. Networks.

[7] Zair Abdelouahab,et al. Proposal of Model and Message Format for Sharing Information between CSIRTs and IDSs , 2005 .

[8] Pierre Sens,et al. Towards Adaptive Fault-Tolerance For Distributed Multi-Agent Systems , 2001 .

[9] H. M. Faheem,et al. A multi-agent based system for intrusion detection , 2003 .

[10] Pierre Sens,et al. A fault-tolerant multi-agent framework , 2002, AAMAS '02.

[11] Ralph Deters,et al. Improving fault-tolerance by replicating agents , 2002, AAMAS '02.