Title :
A network early-warning architecture using mobile agent
Author :
Zhang, Jianbiao ; Xiao, Chuangbai
Author_Institution :
Coll. of Comput. Sci. & Technol., Beijing Univ. of Technol., China
Abstract :
This paper presents a network early-warning architecture based on intrusion detection using mobile agent. This model can predict potential attacks based on rules among suspicious events, which are produced by basic intrusion detection module. Depending on the current needs of the deduction process, it can dispatch relevant mobile agents to collect further suspicious events. The advantage of this model is that: on the one hand it can lower network traffic and system load because of the use of mobile agent; on the other hand it can reduce the number of false positives, predict potential attacks, and furthermore prepare the response in advance.
Keywords :
Internet; mobile agents; telecommunication security; telecommunication traffic; Internet; false positives; intrusion detection; mobile agent; network early-warning architecture; network security; network traffic; potential attack prediction; response preparation; Computer architecture; Computer networks; Computer science; Educational institutions; Intrusion detection; Military computing; Mobile agents; Predictive models; Telecommunication traffic; Watches;
Conference_Titel :
Computer Networks and Mobile Computing, 2003. ICCNMC 2003. 2003 International Conference on
Print_ISBN :
0-7695-2033-2
DOI :
10.1109/ICCNMC.2003.1243068
