Traffic and Attack Pattern Analysis for Multiagent Distributed Intrusion Detection System
Authors
Grzegorz Kolaczek1, Krzysztof Juszczyszyn
1Institute of Information Science and Engineering, Wrocaw University of Technology, Wybrze?e Wyspia?skiego 27, 50-370 Wroc?aw , Poland
Corresponding Author
Grzegorz Kolaczek
Available Online October 2007.
- DOI
- 10.2991/iske.2007.154How to use a DOI?
- Keywords
- ids, ontology, attack pattern, traffic anomaly
- Abstract
The paper proposes an attack pattern ontology and formal framework for network traffic anomalies detection within a distributed multiagent Intrusion Detection System (MUDIDS) architecture. The role of traffic anomalies detection is discussed then it has been clarified how some specific values characterizing network communication can be used to detect network anomalies caused by security incidents (worm attack, virus spreading). Finally, it has been defined how to use the proposed techniques in distributed IDS using attack pattern ontology.
- Copyright
- © 2007, the Authors. Published by Atlantis Press.
- Open Access
- This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).
Cite this article
TY - CONF AU - Grzegorz Kolaczek AU - Krzysztof Juszczyszyn PY - 2007/10 DA - 2007/10 TI - Traffic and Attack Pattern Analysis for Multiagent Distributed Intrusion Detection System BT - Proceedings of the 2007 International Conference on Intelligent Systems and Knowledge Engineering (ISKE 2007) PB - Atlantis Press SP - 908 EP - 914 SN - 1951-6851 UR - https://doi.org/10.2991/iske.2007.154 DO - 10.2991/iske.2007.154 ID - Kolaczek2007/10 ER -