G.L.F. Santos, Z. Abdelouahab, R.A. Dias, C.F.L. Lima, E. Nascimento (Brazil), E.M. Cochra
Security, Intrusion Detection, Automated Response, Intelligent Agents.
Fast reactions against intruders have been one of the most important requirement in the critical defense of computer networks since they act quickly demanding reactions without human intervention. An architecture for supporting intrusion detection systems with this feature yields an automated response system for increasing reliability and efficiency. This paper puts forth a novel distributed multiagent framework that ought to be considered for the design of security network systems for detecting and stopping an attack using emergence or preventive measures, before the target system is affected. It also derives an architecture based on a society of intelligent agents capable of automatically respond to attacks. The system security assessment and enhancement takes into consideration intrusions classified according to a given severity taxonomic model. Guideline and hints toward implementation of such a system, as a low cost project with easy maintenance and fault tolerance are presented and further discussed.
Important Links:
Go Back
