A Novel Network Security Defence Mechanism Based on Multi-SoftMan

Recent security incidents and analysis have demonstrated that current intrusion detection systems (1DS) to some attacks are no longer feasible. Implementing an effective intrusion detection capability is an elusive goal, not solved easily or with a single mechanism. However, we argue that "SoftMan" (SM) technology goes a long way toward realizing the ideal behavior desired in an intrusion detection system. This paper discusses various characteristics in which SoftMan could be applied to the problem of detecting and responding to intrusions. The paper looks not only at the benefits derived from intelligence, but also at those associated with Multi-SoftMan alliance in general. After exploring these benefits, a novel network security defence mechanism based on Multi-SoftMan is proposed. At the same time, the paper visualizes the architecture and system behaviors of Multi-SoftMan intrusion prevention system (MSMIPS). Relevant abstract mathematical models and detailed inferential equations are founded. The experimental results show that MSMIPS enables member sites in the same trust community or different ones to forewarn attacks cooperatively. Furthermore, SoftMan technology also provides a novel idea for improving detection efficiency to the current network intrusion detection system (N1DS).