Abstract
In order to overcome the excessive dependence among the traditional intrusion detection system components, high rate false-alarm phenomenon caused by multiple alarms to the same invasion, inability to adaptively replace mining algorithm when testing environment has changed and other issues, this paper puts forward an Agent based distributed adaptive intrusion detection system, which employs Joint Detection mechanism for mining algorithm module, and Dynamic Election algorithm for the recovery mechanism, thereby improving the system adaptive ability to the external change.
Publisher
Trans Tech Publications, Ltd.
Reference9 articles.
1. Ma Hengtai, Jiang Jianchun , Chen Weifeng. Distributed Model of Intrusion Detection System Based on Agent. JOURNAL OF SOFTWARE. 2000. 11(10): 1312—1319. [In Chinese].
2. Zhao Xibin, Jing Ranzhe, Gu Ming. Adaptive Intrusion Detection Algorithm Based on Rough Sets. Journal of Tsinghua University. 2008, 48(7): 1165-1168. [In Chinese].
3. C. Pinzon, M. Navarro, J. Bajo. AIDeM: Agent-Based Intrusion Detection Mechanism. E: Trends in PAAMS, AISC 71. 347-354. Springer . (2010).
4. Abdul Samad bin Haji Ismail, Abdul Hanan Abdullah. A Novel Method for Unsupervised Anomaly Detection using Unlabelled Data. IEEE. 2008.: 252-260.
5. Miguel A, Sanz-Bobi, M. Castro. IDSAI: A Distributed System for Intrusion Detection Based on Intelligent Agents . E: DOI10. 1109/ICIMP. IEEE. 2010 . 8.