Abstract
The system that monitors the events occurring in a computer system or a network and analyzes the events for sign of intrusions is known as intrusion detection system. The performance of the intrusion detection system can be improved by combing anomaly and misuse analysis. This chapter proposes an ensemble multi-agent-based intrusion detection model. The proposed model combines anomaly, misuse, and host-based detection analysis. The agents in the proposed model use rules to check for intrusions, and adopt machine learning algorithms to recognize unknown actions, to update or create new rules automatically. Each agent in the proposed model encapsulates a specific classification technique, and gives its belief about any packet event in the network. These agents collaborate to determine the decision about any event, have the ability to generalize, and to detect novel attacks. Empirical results indicate that the proposed model is efficient, and outperforms other intrusion detection models.
| Original language | English |
|---|---|
| Title of host publication | Machine Learning |
| Subtitle of host publication | Concepts, Methodologies, Tools and Applications |
| Publisher | IGI Global |
| Pages | 647-659 |
| Number of pages | 13 |
| Volume | 1-3 |
| ISBN (Electronic) | 9781609608194 |
| ISBN (Print) | 9781609608187 |
| DOIs | |
| State | Published - 31 Jul 2011 |
Bibliographical note
Publisher Copyright:© 2012 by IGI Global. All rights reserved.
ASJC Scopus subject areas
- General Computer Science
- General Engineering