A Proposed Multi-Agent System for Intrusion Detection System in a Complex Network

Al-Hamami, Alaa Hussein; Hashem, Soukaena H.

doi:10.1109/ictta.2006.1684990

Cited by 4 publications

(3 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hamami et al [1] have presented the MAS for intrusion detection in complex networks (networks with many users, machines, and connections). The researchers' perspective of proposed IDS present that MAS is an appropriate solution for intrusion detection considering its various properties like distribution, cooperation etc.…”

Section: Background Workmentioning

confidence: 99%

Using Multi-Agent Systems for Intrusion Detection in Computer Networks: A Glance

Kaur

Kaur²

2018

ijarcs

View full text Add to dashboard Cite

Keywords: Intrusion detection, multi-agent system, false positive rate, alert reduction, networks.: The development of Cyber attacks and information safety has become one of the important issues throughout the world. IDS (Intrusion detection systems) are one of the vital components in modern infrastructure in order to enforce various network rules and regulations. Intrusion Detection System is one of the extensively used systems which are used to diagnose malicious activities and various attacks on computer networks, but its present framework confronts a huge number of alerts and false positive alarms. Lots of work has been done to propose various MAS-based intrusion diagnostic techniques for handling the attack alerts, reducing them and for differentiating the real attacks from false positive attacks. This paper reviews various techniques used for intrusion detection in computer networks using multi-agent systems. The lack of accuracy should be improved by using various techniques like the Neural, Data mining and Threshold. Our aim will be to propose novel performance enhancement technique using multi-agent systems that will improve the lack of accuracy and false positive alarm generation problem in IDS with less processing time.

show abstract

Section: Background Workmentioning

confidence: 99%

Using Multi-Agent Systems for Intrusion Detection in Computer Networks: A Glance

Kaur

Kaur²

2018

ijarcs

View full text Add to dashboard Cite

show abstract

“…Also, it may learn or use knowledge to achieve these goals. A hierarchal architecture of the SA-NSM is proposed and studied by [5,18] based on a multi-agent system. It is viewed as a collection of autonomous and intelligent agents located in specific network entities named NSM hosts.…”

Section: Static Agents Nsmmentioning

confidence: 99%

“…But, in practice, it is not possible to have a completely secure network. So, applying security management is a two-fold activity: 1-The security architecture is to be deployed to protect networks by detecting attack; and 2-when attacks are detected the security architecture deals with these attacks in real time by taking security measures [5] . An efficient management system is needed to make use of different security mechanisms in large networks.…”

Section: Introductionmentioning

confidence: 99%

Network Security Management Using Ontology-Based Mobile Agents

Ali¹

2012

JKAU Comp IT Sci

View full text Add to dashboard Cite

Automatic means to manage the security in moderate and large networks are of extreme importance to avoid error-prone manual techniques. This paper paves the way to develop an automatic network security management (NSM) system that is both flexible in deciding the system’s objectives and efficient in using the valuable network bandwidth with a relatively low transmission overhead. The required flexibility and efficiency are obtained using mobile agents (MA) to collect the required security information from various network components and devices, and using ontology to specify the required security policies in such a way understandable by the MA’s software. A simplified NSM prototype is developed, implemented, and tested over a typical local area network to investigate the validity of the suggested ideas. The MA travels through the network and collects the necessary information using an ontology-based security policy. Next, it may either return back to the network administrator to let him decide and perform the suitable actions, or alternatively the MA may take the appropriate decisions. This prototype is tested to examine its functionality and performance using a simple local area network consisting of three computers with different configurations. The developed MA was able to understand the ontology and move around the network. It has properly detected the components that are wrongly configured. It should be made clear that the design is scalable and can be directly applied to more computers in a local area network or even in a wide area network.

show abstract

An Intrusion Detection and Prevention Model Based on Intelligent Multi-Agent Systems, Signatures and Reaction Rules Ontologies

Isaza

Castillo

Duque

Advances in Soft Computing

View full text Add to dashboard Cite

A Proposed Multi-Agent System for Intrusion Detection System in a Complex Network

Cited by 4 publications

References 1 publication

Using Multi-Agent Systems for Intrusion Detection in Computer Networks: A Glance

Using Multi-Agent Systems for Intrusion Detection in Computer Networks: A Glance

Network Security Management Using Ontology-Based Mobile Agents

An Intrusion Detection and Prevention Model Based on Intelligent Multi-Agent Systems, Signatures and Reaction Rules Ontologies

Contact Info

Product

Resources

About