Proceedings of the 2007 International Conference on Intelligent Systems and Knowledge Engineering (ISKE 2007)

Traffic and Attack Pattern Analysis for Multiagent Distributed Intrusion Detection System

Authors
Grzegorz Kolaczek1, Krzysztof Juszczyszyn
1Institute of Information Science and Engineering, Wrocaw University of Technology, Wybrze?e Wyspia?skiego 27, 50-370 Wroc?aw , Poland
Corresponding Author
Grzegorz Kolaczek
Available Online October 2007.
DOI
10.2991/iske.2007.154How to use a DOI?
Keywords
ids, ontology, attack pattern, traffic anomaly
Abstract

The paper proposes an attack pattern ontology and formal framework for network traffic anomalies detection within a distributed multiagent Intrusion Detection System (MUDIDS) architecture. The role of traffic anomalies detection is discussed then it has been clarified how some specific values characterizing network communication can be used to detect network anomalies caused by security incidents (worm attack, virus spreading). Finally, it has been defined how to use the proposed techniques in distributed IDS using attack pattern ontology.

Copyright
© 2007, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Download article (PDF)

Volume Title
Proceedings of the 2007 International Conference on Intelligent Systems and Knowledge Engineering (ISKE 2007)
Series
Advances in Intelligent Systems Research
Publication Date
October 2007
ISBN
978-90-78677-04-8
ISSN
1951-6851
DOI
10.2991/iske.2007.154How to use a DOI?
Copyright
© 2007, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Cite this article

TY  - CONF
AU  - Grzegorz Kolaczek
AU  - Krzysztof Juszczyszyn
PY  - 2007/10
DA  - 2007/10
TI  - Traffic and Attack Pattern Analysis for Multiagent Distributed Intrusion Detection System
BT  - Proceedings of the 2007 International Conference on Intelligent Systems and Knowledge Engineering (ISKE 2007)
PB  - Atlantis Press
SP  - 908
EP  - 914
SN  - 1951-6851
UR  - https://doi.org/10.2991/iske.2007.154
DO  - 10.2991/iske.2007.154
ID  - Kolaczek2007/10
ER  -