• DocumentCode
    2223088
  • Title

    P2P-AIS: A P2P Artificial Immune Systems architecture for detecting DDoS flooding attacks

  • Author

    Ali, Karim ; Aib, Issam ; Boutaba, Raouf

  • Author_Institution
    David R. Cheriton Sch. of Comput. Sci., Univ. of Waterloo, Waterloo, ON, Canada
  • fYear
    2009
  • fDate
    23-26 June 2009
  • Firstpage
    1
  • Lastpage
    4
  • Abstract
    The human immune system (HIS) plays an important role in protecting the human body from various intruders ranging from naive germs to the most sophisticated viruses. It acts as an intrusion detection and prevention system (IDPS) for the human body and detects anomalies that make the body deviate from its normal behavior. This inspired researchers to build artificial immune systems (AISes) which imitate the behavior of the HIS and are capable of protecting hosts or networks from attacks. An artificial immune system (AIS) is capable of detecting novel attacks because it is trained to differentiate between the normal behavior (self) and the abnormal behavior (non-self) during a tolerization (i.e training) period. Although several AISes have been proposed, only a few make use of collaborative approaches. In this paper we propose P2P-AIS, a P2P approach for AISes in which peers exchange intrusion detection experience in order to enhance attack detection and mitigation. P2P-AIS implements Chord as a distributed hash table (DHT) protocol to organize the peers.
  • Keywords
    artificial immune systems; cryptographic protocols; peer-to-peer computing; security of data; Chord; DDoS flooding attacks; P2P-AIS; artificial immune system; distributed hash table protocol; intrusion detection; intrusion prevention system; Artificial immune systems; Broadcasting; Computer crime; Computer science; Error correction; Floods; Humans; Intrusion detection; Protection; Protocols; artificial immune systems; distributed denial of service; intrusion detection; peer-to-peer systems;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Information Infrastructure Symposium, 2009. GIIS '09. Global
  • Conference_Location
    Hammemet
  • Print_ISBN
    978-1-4244-4623-0
  • Electronic_ISBN
    978-1-4244-4624-7
  • Type

    conf

  • DOI
    10.1109/GIIS.2009.5307053
  • Filename
    5307053