A Distributed Autonomous-Agent Network-Intrusion Detection and Response System

Get BibTex-formatted data

Author

Joseph Barrus, Neil C. Rowe

Entry type

techreport

Abstract

We propose a distributed architecture agents to monitor security-related activity within a within a network. Each agent operates cooperatively yet independently of the others, providing for efficiency, real-time response and distribution of resources. This architecture provides significant advantages in scalability, flexibility, extensibility, fault tolerance, and resistance to compromise. We also propose a scheme of escalating levels of alertness, and a way to notify other agents on other computers in a network of attacks so they can take preemptive or reaction measures. We designed a neutral network to measure and determine alert threshold values. A communication protocols proposed to relay these alerts throughout the network. We illustrate our design with a detailed scenario.

URL

http://66.102.1.104/scholar?hl ... ction+and+Response+System

Journal

Proceedings of the 1998 Command and Control Research and Technology Symposium

Key alpha

Barrus

Affiliation

Enable Incorporated, Naval Postgraduate School

Publication Date

2001-01-01

Language

English

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Techreport{ Barrus,
	title = "A Distributed Autonomous-Agent Network-Intrusion Detection and Response System",
	author = "Joseph Barrus, Neil C. Rowe",
	journal = "Proceedings of the 1998 Command and Control Research and Technology Symposium",
	abstract = "We propose a distributed architecture agents to monitor security-related activity within a within a network. Each agent operates cooperatively yet independently of the others, providing for efficiency, real-time response and distribution of resources.  This architecture provides significant advantages in scalability, flexibility, extensibility, fault tolerance, and resistance to compromise.
We also propose a scheme of escalating levels of alertness, and a way to notify other agents on other computers in a network of attacks so they can take preemptive or reaction measures.  We designed a neutral network to measure and determine alert threshold values.  A communication protocols proposed to relay these alerts throughout the network.  We illustrate our design with a detailed scenario.
",
	affiliation = "Enable Incorporated, Naval Postgraduate School",
	language = "English",
	url = "http://66.102.1.104/scholar?hl=en&lr=&q=cache:UycdkAOGQ2EJ:cisr.nps.edu/downloads/98paper_barrus.pdf+A+Distributed+Autonomous-Agent+Network-Intrusion+Detection+and+Response+System",
}