A new model of IDS architecture based on multi-agent systems for MANET

Mobile Ad Hoc Networks (MANETs) are susceptible to a variety of attacks that threaten their operation and the provided services. Intrusion Detection Systems (IDSs) may act as defensive mechanisms, since they monitor network activities in order to detect malicious actions performed by intruders, and then initiate the appropriate countermeasures. IDS for MANETs have attracted much attention recently and thus, there are many publications that propose new IDS solutions or improvements to the existing. In this paper, we study the different architectures existing the IDS for MANETs. We briefly present for each architecture, after an analysis, the strengths and weaknesses, the methods/techniques that have been proposed to improve the performances and the provided security services. Then, we propose a new IDS architecture for MANET, this architecture is a combination of model hierarchical based on clusters and cooperation model based on a multi-agent system (SMA). In this architecture, agents use a knowledge base related to a global security ontology, it can be used to infer new detection rules.