An Immune Multi-agent System for Network Intrusion Detection

Inspired by the immune theory and multi-agent systems, an immune multi-agent system for network intrusion detection is established. The concept of immune agent is introduced. And its logical structure and running mechanism are established. This model implements the multi-layer and distributed mechanism for network intrusion detection. The experimental results show that the new model not only reduces the False-Negative rate and False-Positive rate effectively but also has the feature to adapt to continuous changing network environments.

[1]  Paul Helman,et al.  An immunological approach to change detection: algorithms, analysis and implications , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[2]  Vincent Rodin,et al.  Immune Mechanisms to Regulate Multi-Agents Systems , 2000 .

[3]  Tao Li,et al.  A New Model for Dynamic Intrusion Detection , 2005, CANS.

[4]  Yuebin Bai,et al.  Intrusion Detection Systems: technology and development , 2003, 17th International Conference on Advanced Information Networking and Applications, 2003. AINA 2003..

[5]  Yuebin Bai,et al.  Intrusion Detection System: Technology and Development , 2003 .

[6]  H.M. Faheem,et al.  Evaluating how well agent-based IDS perform , 2005, IEEE Potentials.

[7]  Peter J. Bentley,et al.  An artificial immune model for network intrusion detection , 1999 .

[8]  Dipankar Dasgupta An artificial immune system as a multi-agent decision support system , 1998, SMC'98 Conference Proceedings. 1998 IEEE International Conference on Systems, Man, and Cybernetics (Cat. No.98CH36218).

[9]  P. Helman,et al.  A formal framework for positive and negative detection schemes , 2004, IEEE Transactions on Systems, Man, and Cybernetics, Part B (Cybernetics).

[10]  G. Weisbuch,et al.  Immunology for physicists , 1997 .

[11]  Joachim Swoboda,et al.  Network Management Information Models , 2004 .

[12]  Stephanie Forrest,et al.  Infect Recognize Destroy , 1996 .

[13]  Shi Meilin,et al.  A cooperative intrusion detection system based on autonomous agents , 2003, CCECE 2003 - Canadian Conference on Electrical and Computer Engineering. Toward a Caring and Humane Technology (Cat. No.03CH37436).

[14]  Jerne Nk Towards a network theory of the immune system. , 1974 .

[15]  Stephanie Forrest,et al.  Architecture for an Artificial Immune System , 2000, Evolutionary Computation.