Title: Network security: distributed intrusion detection system using mobile agent technology

Authors: Djemaa Boukhlouf; Okba Kazar; Laid Kahloul

Addresses: LINFI Laboratory, Computer Science Department, University of Biskra, 07000, Algeria ' LINFI Laboratory, Computer Science Department, University of Biskra, 07000, Algeria ' LINFI Laboratory, Computer Science Department, University of Biskra, 07000, Algeria

Abstract: Computer networks connected to the internet are always exposed to many kinds of cybercrimes. An internet user with malicious intent can access, modify, or delete sensitive information present on other computers or make some of the computer services unavailable to other users. An intrusion detection system (IDS) is the process of monitoring the events occurring in a computer system or network and analysing them for sign of intrusions. Centralised IDSs suffer from significant limitations when they are used in high speed networks, especially when they face distributed attacks. In this paper, we propose a distributed intrusion detection system based on mobile agents for network security. The proposed approach uses the platform aglets for the creation and the distribution of four types of mobile agents. A prototypical implementation is tested with different simulated attacks in an isolated network. The obtained results demonstrate the effectiveness of the proposed system.

Keywords: network security; mobile agents; intrusion detection systems; hybrid approach; platform aglets; distributed IDS; distributed attacks; simulation; agent-based systems; multi-agent systems; MAS.

DOI: 10.1504/IJCNDS.2016.080583

International Journal of Communication Networks and Distributed Systems, 2016 Vol.17 No.4, pp.335 - 347

Available online: 28 Nov 2016 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article