Download A safe mobile agent system for distributed intrusion detection

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
Document related concepts

Computer and network surveillance wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

Security-focused operating system wikipedia , lookup

Link Motion Inc wikipedia , lookup

Unix security wikipedia , lookup

Distributed firewall wikipedia , lookup

Carrier IQ wikipedia , lookup

Mobile security wikipedia , lookup

Transcript 
A safe mobile agent system for distributed intrusion
detection
Abstract:This project have the implementation of a distributed agent
architecture for intrusion detection and response in networked computers.
Unlike conventional intrusion detection systems (IDS), this security system
attempts to emulate mechanisms of the natural immune system using Javabased mobile software agents. These security agents monitor multiple levels
(packet, process, system, and user) of networked computers to determine
correlation among the observed anomalous patterns, reporting such
abnormal behavior to the network administrator and/or possibly taking
some action to counter a suspected security violation. The project focuses on
the design aspects of such an intrusion detection system by integrating
different artificial intelligence techniques and a mobile agent architecture.
Implementation of security agents monitor multiple levels Packet, Process,
System, and user of networked computers to determine correlation among the
observed anomalous patterns, reporting such abnormal behavior to the network
administrator and/or possibly taking some action to counter a suspected security
violation.


Active monitoring

Alter detection policies in response to critical events

Detect failed components and restore them without stopping
Robust
the system

Acceptable system performance

Should not interfere with the normal functioning of the host.

Dynamic configurability

Change in configuration of software components, administrative policies

Dynamic extensibility

Addition of new monitoring functions, tools
Implementation Modules :-
1. GUI based Remote Interface Monitoring
Listing a Remote Host
Listing Mobile Agent
Display a Warning
Agent Action
Agent information
2. Designing a Remote Server Application
“This module is designed for managing and controlling the agents”
agents is running the Java runtime environment. This runtime must
implement facilities for executing agents concurrently. Java provides the
ability to run several threads on a Java runtime . Therefore, it is easy to
manage several concurrent application processes (called agents) on the same
runtime. When an agent needs to execute on the runtime, the runtime creates
a new thread which executes the agent’s program.
tween different runtimes. The second important issue when
implementing a mobile agent distributed environment is agent migration. When an
agent
migrates, two kinds of objects have to be transferred: classes and instances. The
classes
constitute the program executed by the agent while the instances compose the
execution
3.
Mobile Agents
“The agent learns about its environment and actions to be more
effective. The agent must be able to communicate not only with the master
agent at the host but with other agents, too. Through this communication, an
agent can collaborate with other agents in the intention to reach its goals”
4. User Authentication
Creating
Remove
Change
user key.
5. Implementing Mobile Agents
6. Agent is implemented in Agent Runtime Enviroment
Flow Chart
Software Requirements :Language : Java, RMI, SWING
O/S
: WIN2000 Server , TCP/IP
Related documents
Security Agents for Network Traffic Analysis
Security Agents for Network Traffic Analysis
Chapter 1 questions
Chapter 1 questions
Introduction to C
Introduction to C
Midterm 2 review
Midterm 2 review
Java Beans - CSCE | College of Engineering | University of
Java Beans - CSCE | College of Engineering | University of
Ying Chen
Ying Chen
Runtime Errors - University of Nebraska Omaha
Runtime Errors - University of Nebraska Omaha
Title
Title
Just-in-Time Data Structures
Just-in-Time Data Structures
Building Survivable Systems based on Intrusion Detection and
Building Survivable Systems based on Intrusion Detection and
Java Test Paper 6 30 X 0.5 = 15 Marks How many bytes are
Java Test Paper 6 30 X 0.5 = 15 Marks How many bytes are
Working with Processes in Java Processes A process
Working with Processes in Java Processes A process
Performance
Performance
Running External Programs from Java with Runtime.exec()
Running External Programs from Java with Runtime.exec()
QJ-Pro does not include a Java runtime environment (JRE). You will
QJ-Pro does not include a Java runtime environment (JRE). You will
Characteristics of Runtime Program Evolution
Characteristics of Runtime Program Evolution
Operating Systems
Operating Systems
Java Test Paper 1 30 X 0.5 = 15 Marks What does JDK stands for
Java Test Paper 1 30 X 0.5 = 15 Marks What does JDK stands for
Runtime Verification using LARVA
Runtime Verification using LARVA
A Parallel Processing Paradigm Utilizing Mobile Agents
A Parallel Processing Paradigm Utilizing Mobile Agents
CERCS - Creating System Solutions for Future Technologies
CERCS - Creating System Solutions for Future Technologies
A1 handout - CDF - University of Toronto
A1 handout - CDF - University of Toronto