Design of the Self-protection Agent for Distributed Network-based Intrusion Detection System

The security of distributed network-based intrusion detection system (NIDS) has become the point of the security of the whole networks. Based on the analysis of the NIDS, the approaches of packet-filtering, processes-controlling, packet-confirmation and secure communications are adopted by self-protection agent (SPA) to improve the security of NIDS according to its technique feathers. The architecture and the detailed design of the SPA are presented. Also, a prototype SPA is implemented , which has been used to cooperate with the agents-based NIDS to improve the security of the NIDS.