论文信息 - An intelligent agent security intrusion system

An intelligent agent security intrusion system

Network security has now become one of the most important aspects in computer systems and the Internet. Apart from strong encryption, there is no definite method of truly securing network, thus they must be protected at different levels of the OSI model. At the physical layer, they can be protected by lock-and-key, and at the data link, they can be protected within VLANS (virtual LANs). With the network and transport layers, networks can be secured by firewalls, which monitor source and destination network addresses, and source and destination ports, respectively. At the session level, user names and passwords are be used. Unfortunately, all these methods can be prone to methods which can overcome the protection used. This paper expands the research previously undertaken on a misuse system based on the intelligent agent software technology. The system monitors user actions in real-time and take appropriate actions if necessary. Along with this our system uses a short-term prediction to predict the user behaviour and advises the system administrator accordingly, before the actual actions take place. This paper presents new results, which are based on an increased number of users. We tested our short-term prediction model, introduced the notion of intervention to our model, and found that the results are very close to the actual user behaviour.

[1] William J. Buchanan,et al. Software agents and computer network security , 2000, Proceedings Seventh IEEE International Conference and Workshop on the Engineering of Computer-Based Systems (ECBS 2000).

[2] Eugene H. Spafford,et al. A PATTERN MATCHING MODEL FOR MISUSE INTRUSION DETECTION , 1994 .

[3] Eugene H. Spafford,et al. Defending a Computer System Using Autonomous Agents , 1995 .

[4] Chris Herringshaw. Detecting Attacks on Networks , 1997, Computer.

[5] Georges A. Darbellay,et al. Forecasting the short-term demand for electricity: Do neural networks stand a better chance? , 2000 .

[6] Bruce Schneier,et al. Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security. A Report by an Ad Hoc Group of Cryptographers and Computer Scientists , 1996 .

[7] Bradley P. Carlin,et al. BAYES AND EMPIRICAL BAYES METHODS FOR DATA ANALYSIS , 1996, Stat. Comput..

[8] A. Rukhin. Bayes and Empirical Bayes Methods for Data Analysis , 1997 .

[9] Matthew J. Weiner,et al. Efficient DES Key Search , 1994 .

[10] Ralph Howard,et al. Data Encryption Standard , 1987, Definitions.