Danger Theory: The Link between AIS and IDS?

Aickelin, Uwe; Bentley, Peter J.; Cayzer, Steve; Kim, Jungwon

doi:10.2139/ssrn.2832042

Cited by 98 publications

(141 citation statements)

References 27 publications

Supporting

Mentioning

140

Contrasting

Unclassified

Order By: Relevance

“…In this model we replace the negative selection module in our previous model in [2] with a new one. In the new negative selection module instead of using only normal profile to distinguish and classified packets into two different classes of "Normal" and "Anomaly", we do future process on each packet using our expert rules, produced before based on the normal profile table.…”

Section: A Model Detailsmentioning

confidence: 99%

See 1 more Smart Citation

A Machine Learning Based AIS IDS

Mahboubian¹,

Hamid²

2013

IJMLC

View full text Add to dashboard Cite

Abstract-In recent years we have seen a very great interest in combining naturally inspired techniques with existing conventional approaches. In this study we combined Negative Selection theory, one of most important theories in AIS, and knowledge production rules to propose a novel IDS. To generate the detectors first we produced a set of basic rules using knowledge production techniques with the help of WEKA, next the new detectors was generated and matured inside negative selection module and the basic rules. After experimenting the proposed model using DARAP 1999 dataset, this model showed a good performance compared to our previous models.

show abstract

Section: A Model Detailsmentioning

confidence: 99%

“…Artificial immune system can use biological immune theoretic for references to search and design relevant models and algorithms to solve the various problems occurred in the field of computer security [2].…”

Section: Introductionmentioning

confidence: 99%

A Machine Learning Based AIS IDS

Mahboubian¹,

Hamid²

2013

IJMLC

View full text Add to dashboard Cite

show abstract

“…According to their evaluation, the danger signal greatly reduced the number of false positives [64]. However, the majority of publications on the use of the danger theory in AIS have been produced by its most outspoken proponents, Aickelin et al [62,65,66].…”

Section: Danger Signalsmentioning

confidence: 99%

A taxonomy of biologically inspired research in computer networking

2010

View full text Add to dashboard Cite

a b s t r a c tThe natural world is enormous, dynamic, incredibly diverse, and highly complex. Despite the inherent challenges of surviving in such a world, biological organisms evolve, self-organize, self-repair, navigate, and flourish. Generally, they do so with only local knowledge and without any centralized control. Our computer networks are increasingly facing similar challenges as they grow larger in size, but are yet to be able to achieve the same level of robustness and adaptability. Many research efforts have recognized these parallels, and wondered if there are some lessons to be learned from biological systems. As a result, biologically inspired research in computer networking is a quickly growing field. This article begins by exploring why biology and computer network research are such a natural match. We then present a broad overview of biologically inspired research, grouped by topic, and classified in two ways: by the biological field that inspired each topic, and by the area of networking in which the topic lies. In each case, we elucidate how biological concepts have been most successfully applied. In aggregate, we conclude that research efforts are most successful when they separate biological design from biological implementation -that is to say, when they extract the pertinent principles from the former without imposing the limitations of the latter.

show abstract

“…For this purpose the "libtissue" [9,10] AIS framework, a product of a danger theory project [1], will model a number of innate immune system components such as dendritic cells in order to direct an adaptive T-cell based response. Dendritic cells will carry the responsibility of discerning dangerous and safe contexts as well as carrying out their role of presenting antigen and signals to a population of T-cells as in [4].…”

Section: The Algorithmmentioning

confidence: 99%

Integrating Innate and Adaptive Immunity in Intrusion Detection

2006

Self Cite

View full text Add to dashboard Cite

Abstract. Network Intrusion Detection Systems (NIDS) monitor a network with the aim of discerning malicious from benign activity on that network. While a wide range of approaches have met varying levels of success, most IDS's rely on having access to a database of known attack signatures which are written by security experts. Nowadays, in order to solve problems with false positive alerts, correlation algorithms are used to add additional structure to sequences of IDS alerts. However, such techniques are of no help in discovering novel attacks or variations of known attacks, something the human immune system (HIS) is capable of doing in its own specialised domain. This paper presents a novel immune algorithm for application to an intrusion detection problem. The goal is to discover packets containing novel variations of attacks covered by an existing signature base.

show abstract

Danger Theory: The Link between AIS and IDS?

Cited by 98 publications

References 27 publications

A Machine Learning Based AIS IDS

A Machine Learning Based AIS IDS

A taxonomy of biologically inspired research in computer networking

Integrating Innate and Adaptive Immunity in Intrusion Detection

Contact Info

Product

Resources

About