Cited By
View all- Li BSpringer JBebis GHadi Gunes M(2013)ReviewJournal of Network and Computer Applications10.1016/j.jnca.2012.12.02036:2(567-581)Online publication date: 1-Mar-2013
Multi-agent approach to network intrusion detection
Authors: 
Martin Rehak, Michal Pechoucek, Pavel Celeda, Vojtech Krmicek, Martin Grill, Karel BartosAuthors Info & Claims
Pages 1695 - 1696
Abstract
Our demo presents an agent-based intrusion detection system designed for deployment on high-speed backbone networks. The major contribution of the system is the integration of several anomaly detection techniques by means of collective trust modeling within a group of collaborative detection agents, each featuring a specific detection algorithm. The principal role of anomalies is to provide the input into the trust modeling stage of the detection, where each agent determines the flow trustfulness from aggregated anomalies. The aggregation is performed by extended trust models that model the trustfulness of generalized situated identities, represented by a set of observable features. The system is based on traffic statistics in NetFlow format acquired by dedicated hardware-accelerated network cards, and is able to perform a real-time surveillance of the gigabit networks.
References
[1]
M. Rehak and M. Pechoucek. Trust modeling with context representation and generalized identities. In Cooperative Information Agents XI, number 4676 in LNAI/LNCS. Springer-Verlag, 2007.
[2]
M. Rehak, M. Pechoucek, K. Bartos, M. Grill, and P. Celeda. Network intrusion detection by means of community of trusting agents. In IEEE/WIC/ACM International Conference on Intelligent Agent Technology (IAT 2007 Main Conference Proceedings) (IAT '07), Los Alamitos, CA, USA, 2007. IEEE Computer Society.
Index Terms
- Multi-agent approach to network intrusion detection
Recommendations
CAMNEP: agent-based network intrusion detection system
AAMAS '08: Proceedings of the 7th international joint conference on Autonomous agents and multiagent systems: industrial trackWe present a prototype of agent-based intrusion detection system designed for deployment on high-speed backbone networks. The main contribution of the system is the integration of several anomaly detection techniques by means of collective trust ...
A Hybrid Network Intrusion Detection Technique Using Random Forests
ARES '06: Proceedings of the First International Conference on Availability, Reliability and SecurityIntrusion detection is important in network security. Most current network intrusion detection systems (NIDSs) employ either misuse detection or anomaly detection. However, misuse detection cannot detect unknown intrusions, and anomaly detection usually ...
A Novel Outlier Detection Scheme for Network Intrusion Detection Systems
ISA '08: Proceedings of the 2008 International Conference on Information Security and Assurance (isa 2008)Network intrusion detection system serves as a second line of defense to intrusion prevention. Anomaly detection approach is important in order to detect new attacks. This paper adopted connectivity-based outlier detection scheme from statistical field ...
Comments
Please enable JavaScript to view thecomments powered by Disqus.Information & Contributors
Information
Published In
May 2008
116 pages
Sponsors
- ACM: Association for Computing Machinery
- AAAI: Association for the Advancement of Artifical Intelligence
Publisher
International Foundation for Autonomous Agents and Multiagent Systems
Richland, SC
Publication History
Published: 12 May 2008
Check for updates
Author Tags
Qualifiers
- Research-article
Conference
AAMAS08
Sponsor:
- ACM
- AAAI
AAMAS08: 7th International Conference on Autonomous Agents and Multi Agent Systems
May 12 - 16, 2008
Estoril, Portugal
Acceptance Rates
Overall Acceptance Rate 1,155 of 5,036 submissions, 23%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 279Total Downloads
- Downloads (Last 12 months)3
- Downloads (Last 6 weeks)1
Reflects downloads up to 01 Nov 2024
Other Metrics
Citations
Cited By
View all- Li BSpringer JBebis GHadi Gunes M(2013)ReviewJournal of Network and Computer Applications10.1016/j.jnca.2012.12.02036:2(567-581)Online publication date: 1-Mar-2013
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in