Integrating Innate and Adaptive Immunity for Intrusion Detection

Tedesco, Gianni and Twycross, Jamie and Aickelin, Uwe (2006) Integrating Innate and Adaptive Immunity for Intrusion Detection. In: Proceedings of the 5th International Conference on Artificial Immune Systems (ICARIS 2006), Oeiras, Portugal.

[img]
Preview
PDF - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
147Kb

Abstract

Network Intrusion Detection Systems (NIDS) monitor a net- work with the aim of discerning malicious from benign activity on that network. While a wide range of approaches have met varying levels of success, most IDS’s rely on having access to a database of known attack signatures which are written by security experts. Nowadays, in order to solve problems with false positive alerts, correlation algorithms are used to add additional structure to sequences of IDS alerts. However, such techniques are of no help in discovering novel attacks or variations of known attacks, something the human immune system (HIS) is capable of doing in its own specialised domain. This paper presents a novel immune algorithm for application to an intrusion detection problem. The goal is to discover packets containing novel variations of attacks covered by an existing signature base.

Item Type:Conference or Workshop Item (Lecture)
Schools/Departments:Faculty of Science > School of Computer Science and Information Technology
ID Code:579
Deposited By:Aickelin, Professor Uwe
Deposited On:12 Oct 2007 16:05
Last Modified:12 Oct 2007 16:05

Repository Staff Only: item control page