论文信息 - A Novel Network Attack Audit System based on Multi-Agent Technology

A Novel Network Attack Audit System based on Multi-Agent Technology

Abstract A network attack audit system which includes network attack audit Agent, host audit Agent and management control center audit Agent is proposed. And the improved multi-agent technology is carried out in the network attack audit Agent which has achieved satisfactory audit results. The audit system in terms of network attack is just in-depth, and with the function improvement of network attack audit Agent, different attack will be better analyzed and audit. In addition, the management control center Agent should manage and analyze audit results from AA (or HA) and audit data on time. And the history files of network packets and host log data should also be audit to find deeper violations that cannot be found in real time.

Wang Jianping | Chen Min | Wu Xianwen

[1] Yong-qing Wei,et al. An improved Apriori algorithm for association rules of mining , 2009, 2009 IEEE International Symposium on IT in Medicine & Education.

[2] Andrei V. Kelarev,et al. The Theory of Information and Coding , 2005 .

[3] Jiawei Han,et al. Data Mining: Concepts and Techniques , 2000 .

[4] Robert J. McEliece,et al. The Theory of Information and Coding , 1979 .

[5] Vincent Rodin,et al. Immune Mechanisms to Regulate Multi-Agents Systems , 2000 .

[6] Dan Schnackenberg,et al. Statistical approaches to DDoS attack detection and response , 2003, Proceedings DARPA Information Survivability Conference and Exposition.

[7] Liu Peiyu. Log system design in support of linkage analysis of security audit and computer forensics , 2009 .

[8] Zhang Zi. Multi-Agent DDoS Attack Detection Based on Information Entropy , 2008 .

[9] Su Lei,et al. Application of Load Balancing in Intrusion Detection System Based on Multi-Agent , 2008 .