A network early-warning architecture using mobile agent

Author

Zhang, Jianbiao ; Xiao, Chuangbai

Author_Institution

Coll. of Comput. Sci. & Technol., Beijing Univ. of Technol., China

fYear

2003

fDate

20-23 Oct. 2003

Firstpage

349

Lastpage

352

Abstract

This paper presents a network early-warning architecture based on intrusion detection using mobile agent. This model can predict potential attacks based on rules among suspicious events, which are produced by basic intrusion detection module. Depending on the current needs of the deduction process, it can dispatch relevant mobile agents to collect further suspicious events. The advantage of this model is that: on the one hand it can lower network traffic and system load because of the use of mobile agent; on the other hand it can reduce the number of false positives, predict potential attacks, and furthermore prepare the response in advance.

Keywords

Internet; mobile agents; telecommunication security; telecommunication traffic; Internet; false positives; intrusion detection; mobile agent; network early-warning architecture; network security; network traffic; potential attack prediction; response preparation; Computer architecture; Computer networks; Computer science; Educational institutions; Intrusion detection; Military computing; Mobile agents; Predictive models; Telecommunication traffic; Watches;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Networks and Mobile Computing, 2003. ICCNMC 2003. 2003 International Conference on

Print_ISBN

0-7695-2033-2

Type

conf

DOI

10.1109/ICCNMC.2003.1243068

Filename

1243068