Distributed monitoring and intrusion detection using autonomous agents
Diego Zamboni - Purdue COAST
Aug 28, 1998
AbstractThe Intrusion Detection System (IDS) architectures commonly used in commercial and research systems have a number of problems that limit their configurability, scalability or efficiency. The most common shortcoming in the existing architectures is that they are built around a single monolithic entity that does most of the data collection and processing. In this talk I will present an architecture that has been developed in the COAST laboratory for a distributed IDS based on multiple independent entities working collectively. We call these entities Autonomous Agents. This approach solves some of the problems mentioned. I will describe the architecture and the prototype that we have built based on it, discuss some of the latest developments, and talk about some of the plans for the future.
About the SpeakerDiego Zamboni is one of the senior Ph.D. students in the COAST Laboratory. He came to Purdue from Mexico on a Fulbright Fellowship. More informtion is available on his WWW
The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.