RIS ID
24689
Additional Publication Information
ISBN: 9780769531311
Abstract
Traditional hierarchical intrusion detection systems have a central manager which attracts hackers to attack and might overload when there are too many client requests. To overcome these drawbacks, some researchers suggested to apply Peer-to-Peer approaches in intrusion detection. Most current Peer-to-Peer intrusion detection systems only allow hosts to collect related information from "neighbours" (one hop hosts). The limitation of information sources may lead a system to make inaccurate decisions. In this paper, we propose a Mobile Agent Based Peer-to-Peer Distributed Intrusion Detection Framework. Agents are included in this framework to achieve intrusion detections. In addition, a mobile agent migration strategy is applied in the framework to allow agents not only to collect information from direct-linked "neighbours" but also other hosts in the network. Benefitted from agent and Peer-to-Peer techniques, our framework can decrease the overhead of each host in the network, reduce the security risk, and achieve more accurate detections.
Publication Details
Bai, Q., Zhang, M., Ye, D. & Ye, Z. 2008, ''P2P distributed intrusion detections by using mobile agents'', in R. Lee (eds), IEEE/ACIS International Conference on Computer and Information Science, IEEE, Los Alamitos, California, USA, pp. 259-265.