APHIDS++: Evolution of A Programmable Hybrid Intrusion Detection System

Alam, Mohammed S.; Gupta, Abhishek; Wires, Jake; Vuong, Son

doi:10.1007/11569510_3

Mohammed S. Alam²⁰,
Abhishek Gupta²⁰,
Jake Wires²⁰ &
…
Son Vuong²⁰

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 3744))

Included in the following conference series:

International Workshop on Mobile Agents for Telecommunication Applications

497 Accesses
2 Citations

Abstract

With the rapid growth of the Internet and the ever-increasing security problems associated with its popularity, the need for protection against unwanted intruders has become imperative. Antivirus software, intrusion detection systems, spyware detectors, and mal-ware detectors are some of the protection mechanisms available to users today. The diversity of these manifold systems suggests the need for a unifying managerial system, such as APHIDS (A Programmable Hybrid Intrusion Detection System), which can correlate and coalesce preexisting security components. In this paper we provide a description of improvements made to the initial APHIDS design, comprising the introduction of agent caching, the addition of an optional intelligent agent, and an XML implementation of our Distributed Correlation Script (DCS).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Deeter, K., Singh, K., Wilson, S., Fillipozzi, L., Vuong, S.: APHIDS: A Mobile Agent-Based Programmable Hybrid Intrusion Detection System. In: Karmouch, A., Korba, L., Madeira, E.R.M. (eds.) MATA 2004. LNCS, vol. 3284, pp. 244–253. Springer, Heidelberg (2004)
Chapter Google Scholar
Roesch, M.: Snort - lightweight intrusion detection system for networks. In: Proceedings of USENIX LISA 1999 (1999)
Google Scholar
Balasubramanian, J., Garcia-Fernandez, J., Isacoff, D., Spafford, E., Zamboni, D.: An archi-tecture for intrusion detection using autonomous agents. Technical Report 98/05, COAST Laboratory, Purdue University (1998)
Google Scholar
Asaka, M., Taguchi, A., Goto, S.: The implementation of IDA: An intrusion detection agent system. In: Proceedings of the 11th FIRST Conference (1999)
Google Scholar
Queiroz, J., Carmo, L., Pirmez, L.: Micael: An autonomous mobile agent system to protect new generation networked applications. In: 2nd Annual Workshop on Recent Advances in Intrusion Detection (1999)
Google Scholar
Kruegel, C., Toth, T.: Sparta - a mobile agent based intrusion detection system. In: Proceed-ings of the IFIP Conference on Network Security, I-NetSec (2001)
Google Scholar
Li, C., Song, Q., Zhang, C.: Ma-ids architecture for distributed intrusion detection using mobile agents. In: Proceedings of the 2nd International Conference on Information Technology for Application, ICITA 2004 (2004)
Google Scholar
Deeter, K.: APHIDS: A Mobile Agent-Based Programmable Hybrid Intrusion Detection System. Masters thesis, Department of Computer Science, UBC (2004)
Google Scholar
Singh, K., Vuong, S.: Blaze: a mobile agent paradigm for VoIP Intrusion Detection Systems. In: Proceedings of ICETE 2004 - First International Conference on E-Business and Tele-communication Networks, Setubal, Portugal (2004)
Google Scholar
Cabri, G., Leonardi, L., Zambonelli, F.: XML Dataspaces for Mobile Agent Coordination. In: Symposium on Applied Computing, pp. 181–188 (2000)
Google Scholar
Debar, H., Curry, D., Feinstein, B.: The Intrusion Detection Message Exchange Format, draft-ietf-idwg-idmef-xml-14.txt (2005)
Google Scholar
Grasshopper (2003), http://www.grasshopper.de

Download references

Author information

Authors and Affiliations

Department of Computer Science, University of British Columbia, Vancouver, Canada
Mohammed S. Alam, Abhishek Gupta, Jake Wires & Son Vuong

Authors

Mohammed S. Alam
View author publications
You can also search for this author in PubMed Google Scholar
Abhishek Gupta
View author publications
You can also search for this author in PubMed Google Scholar
Jake Wires
View author publications
You can also search for this author in PubMed Google Scholar
Son Vuong
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

FOKUS Fraunhofer-Institute for Open Communication Systems, Kaiserin-Augusta-Allee 31, P.O. Box, 10589, Berlin, Germany
Thomas Magedanz
Multimedia & Mobile Agent Research Laboratory, School of Information Technology & Engineering (SITE), University of Ottawa, Canada, 161 Louis Pasteur St. Ottawa, P.O. Box, K1N 6N5, ON, Canada
Ahmed Karmouch
Mobile Computing and Networking Research Laboratory, (LARIM), Department of Computer Engineering, École Polytechnique de Montréal, Station Centre-ville, P.O. Box 6079, H3C 3A7, Montréal, Québec, Canada
Samuel Pierre
School of Electrical and Computer Engineering, National Technical University of Athens, P.O. Box
Iakovos Venieris

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Alam, M.S., Gupta, A., Wires, J., Vuong, S. (2005). APHIDS++: Evolution of A Programmable Hybrid Intrusion Detection System. In: Magedanz, T., Karmouch, A., Pierre, S., Venieris, I. (eds) Mobility Aware Technologies and Applications. MATA 2005. Lecture Notes in Computer Science, vol 3744. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11569510_3

Download citation

DOI: https://doi.org/10.1007/11569510_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-29410-8
Online ISBN: 978-3-540-32031-9
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics