A Mobile Agent and Snort Based Distributed Intrusion Detection System

Author

Ye, Xiao-Ling ; Zhang, Ying-Chao ; Zhang, Chao-Long ; Chen, Chao ; Huang, Xin-Yi

Author_Institution

Nanjing Univ. of Inf. Sci. & Technol., Nanjing, China

Volume

1

fYear

2009

fDate

19-21 May 2009

Firstpage

281

Lastpage

285

Abstract

Nowadays with the growing scale of computer network as well as the number of nodes, the traditional method of mobile agent based distributed intrusion detection system may cause severe problem of network congestion and time delay, for the data processing of all the nodes are converged to the central node which will lead to a mass data processing on it. In this article we bring up a mobile agent and snort based distributed intrusion detection system (short for MASDIDS). It does data collection, analysis and response on the supervisory node and the result is analyzed by mobile agent. Therefore, the central server only has to take down the intrusion behavior and manage components, because most calculation is distributed to the supervisory nodes. The problem of excessive flow in the system processing center will not exist, so that the real-time of the system will be enhanced.

Keywords

computer networks; data analysis; delays; mobile agents; network servers; security of data; central node; central server; computer network; data analysis; data collection; distributed intrusion detection system; mass data processing; mobile agent; network congestion; snort; system processing center; time delay; Chaos; Data analysis; Data processing; Information science; Intrusion detection; Mobile agents; Network topology; Scattering; Software engineering; Switches;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Engineering, 2009. WCSE '09. WRI World Congress on

Conference_Location

Xiamen

Print_ISBN

978-0-7695-3570-8

Type

conf

DOI

10.1109/WCSE.2009.310

Filename

5319109