Real-time intrusion detection system using multi-agent system

Research output: Contribution to journalArticle

4 Citations (Scopus)

Abstract

The growth of network attacks has lengthened the intrusion detection system's (IDS) processing time to detect these attacks. The demand for reducing the processing time has increased when dealing with real time IDS. Several methods were proposed, such as improving the algorithm, or improving the IDS's architectural design; which includes distributed and parallel. However, this paper sought to present a Multi-agent System solution (MAS-IDS) to enhance the performance of IDS in order to reduce the analysis of the network's traffic data processing time when detecting attacks. Numerous works of MAS improved the accuracy of IDS, however, only a few had focused on enhancing the processing time of IDS. The number of analysis agents that can be created in a system depends upon the size of traffic data and the availability of logical processors (cores) in the system, without affecting the performance of the hosts with less targeted time. The conducted experiments employed the dataset KDDCUP'99. The results illustrated that MAS-IDS had reduced up to 81% of the processing time in the analysis procedure when compared to traditional IDS with maintaining the same accuracy approximately.

Original languageEnglish
Pages (from-to)80-90
Number of pages11
JournalIAENG International Journal of Computer Science
Volume43
Issue number1
Publication statusPublished - 1 Feb 2016

Fingerprint

Intrusion detection
Multi agent systems
Processing
Architectural design
Availability

Keywords

  • Distributed system
  • Intrusion detection system
  • Multi-agent system
  • Network security
  • Parallel processing

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Real-time intrusion detection system using multi-agent system. / Al-Yaseen, Wathiq Laftah; Ali Othman, Zulaiha; Ahmad Nazri, Mohd Zakree.

In: IAENG International Journal of Computer Science, Vol. 43, No. 1, 01.02.2016, p. 80-90.

Research output: Contribution to journalArticle

@article{2f607d94d1a940a1a2c8c9b6eb600579,
title = "Real-time intrusion detection system using multi-agent system",
abstract = "The growth of network attacks has lengthened the intrusion detection system's (IDS) processing time to detect these attacks. The demand for reducing the processing time has increased when dealing with real time IDS. Several methods were proposed, such as improving the algorithm, or improving the IDS's architectural design; which includes distributed and parallel. However, this paper sought to present a Multi-agent System solution (MAS-IDS) to enhance the performance of IDS in order to reduce the analysis of the network's traffic data processing time when detecting attacks. Numerous works of MAS improved the accuracy of IDS, however, only a few had focused on enhancing the processing time of IDS. The number of analysis agents that can be created in a system depends upon the size of traffic data and the availability of logical processors (cores) in the system, without affecting the performance of the hosts with less targeted time. The conducted experiments employed the dataset KDDCUP'99. The results illustrated that MAS-IDS had reduced up to 81{\%} of the processing time in the analysis procedure when compared to traditional IDS with maintaining the same accuracy approximately.",
keywords = "Distributed system, Intrusion detection system, Multi-agent system, Network security, Parallel processing",
author = "Al-Yaseen, {Wathiq Laftah} and {Ali Othman}, Zulaiha and {Ahmad Nazri}, {Mohd Zakree}",
year = "2016",
month = "2",
day = "1",
language = "English",
volume = "43",
pages = "80--90",
journal = "IAENG International Journal of Computer Science",
issn = "1819-656X",
publisher = "International Association of Engineers",
number = "1",

}

TY - JOUR

T1 - Real-time intrusion detection system using multi-agent system

AU - Al-Yaseen, Wathiq Laftah

AU - Ali Othman, Zulaiha

AU - Ahmad Nazri, Mohd Zakree

PY - 2016/2/1

Y1 - 2016/2/1

N2 - The growth of network attacks has lengthened the intrusion detection system's (IDS) processing time to detect these attacks. The demand for reducing the processing time has increased when dealing with real time IDS. Several methods were proposed, such as improving the algorithm, or improving the IDS's architectural design; which includes distributed and parallel. However, this paper sought to present a Multi-agent System solution (MAS-IDS) to enhance the performance of IDS in order to reduce the analysis of the network's traffic data processing time when detecting attacks. Numerous works of MAS improved the accuracy of IDS, however, only a few had focused on enhancing the processing time of IDS. The number of analysis agents that can be created in a system depends upon the size of traffic data and the availability of logical processors (cores) in the system, without affecting the performance of the hosts with less targeted time. The conducted experiments employed the dataset KDDCUP'99. The results illustrated that MAS-IDS had reduced up to 81% of the processing time in the analysis procedure when compared to traditional IDS with maintaining the same accuracy approximately.

AB - The growth of network attacks has lengthened the intrusion detection system's (IDS) processing time to detect these attacks. The demand for reducing the processing time has increased when dealing with real time IDS. Several methods were proposed, such as improving the algorithm, or improving the IDS's architectural design; which includes distributed and parallel. However, this paper sought to present a Multi-agent System solution (MAS-IDS) to enhance the performance of IDS in order to reduce the analysis of the network's traffic data processing time when detecting attacks. Numerous works of MAS improved the accuracy of IDS, however, only a few had focused on enhancing the processing time of IDS. The number of analysis agents that can be created in a system depends upon the size of traffic data and the availability of logical processors (cores) in the system, without affecting the performance of the hosts with less targeted time. The conducted experiments employed the dataset KDDCUP'99. The results illustrated that MAS-IDS had reduced up to 81% of the processing time in the analysis procedure when compared to traditional IDS with maintaining the same accuracy approximately.

KW - Distributed system

KW - Intrusion detection system

KW - Multi-agent system

KW - Network security

KW - Parallel processing

UR - http://www.scopus.com/inward/record.url?scp=84962866746&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84962866746&partnerID=8YFLogxK

M3 - Article

VL - 43

SP - 80

EP - 90

JO - IAENG International Journal of Computer Science

JF - IAENG International Journal of Computer Science

SN - 1819-656X

IS - 1

ER -