Distributed Model of Intrusion Detection System Based on Agent

摘要: The framework model proposed in this paper is a real time intrusion detection sy stem based on Agent, which provides an interface for com pone nts. Such can be used to detect behaviors both netw ork and hosts. According the different system or network usage patterns e nvironment diversity, set of various agents will created cooperate anomalous aspects. open system, h as g ood scalability. It easy add new cooperating hosts expan d patterns. work concurrent way without any central co ntrolling module. cooperation among Agents implemented just by communicat ion. are independent but capable communicating with each other whe n they take their actions. state-checking policy authentication mech anism ensure security themselves communication t hem. This specific application environment, thus providi ng general-purpose systems.