TJIDS: an intrusion detection architecture for distributed network

Author

Xue, Qiang ; Sun, Jizhou ; Wei, Zhihui

Author_Institution

Dept. of Comput. Sci., Tianjin Univ., China

Volume

2

fYear

2003

fDate

4-7 May 2003

Firstpage

709

Abstract

We present TJIDS (Tianjin intrusion detection system), a network intrusion detection system whose main functionality is to detect and respond to malicious attacks in distributed network. The main novelty in TJIDS is its intelligent distributed agent architecture to enable distributed intrusion detection with dynamic policy change, as the treat pattern changes. We have adopted a multilevel agent technique, and applied genetic algorithm to this agent-based intrusion detection system. The advantage of our architecture is its ability to perform dynamic policy update in intrusion detection system through wireless net gate, and respond intrusions by distributed agents. Key concepts and preliminary results are presented.

Keywords

computer network management; genetic algorithms; multi-agent systems; telecommunication security; Tianjin intrusion detection system; agent-based intrusion detection architecture; distributed intrusion detection; distributed network; dynamic policy; genetic algorithm; intelligent distributed agent architecture; multilevel agent technique; network security; pattern change; wireless net gate; Communication system security; Computer architecture; Computer hacking; Computer science; Genetic algorithms; Information security; Information technology; Intelligent agent; Intrusion detection; Sun;

fLanguage

English

Publisher

ieee

Conference_Titel

Electrical and Computer Engineering, 2003. IEEE CCECE 2003. Canadian Conference on

ISSN

0840-7789

Print_ISBN

0-7803-7781-8

Type

conf

DOI

10.1109/CCECE.2003.1225993

Filename

1225993