Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Mobile Agent Attack Resistant Distributed Hierarchical Intrusion Detection Systems

Published

Author(s)

Peter M. Mell, Mark McLarnon

Abstract

Distributed intrusion detection systems are especially vulnerable to attacks since, typically, each component resides at a static location and components are connected together into a hierarchical structure. An attacker can disable such a system by taking out a node high in the hierarchy, thus amputating a portion of the distributed system. A solution to this problem is to cast the internal nodes in the system hierarchy as mobile agents. These mobile agents randomly move around the network such that an attacker can not locate their position. If an attacker takes out a mobile agent platform, the remaining agents estimate the location of the attacker and automatically avoid those networks. Killed agents are resurrected by a group of backups that retain all or partial state information. We are implementing this technology as an API such that existing intrusion detection systems can wrap their components as mobile agents in order to gain a type of attack resistance.
Conference Dates
September 7-9, 1999
Conference Title
Conference on Recent Advances in Intrusion Detection

Keywords

attack resistance, computer security, intrusion detection, mobile agents

Citation

Mell, P. and McLarnon, M. (1999), Mobile Agent Attack Resistant Distributed Hierarchical Intrusion Detection Systems, Conference on Recent Advances in Intrusion Detection, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=151206 (Accessed April 23, 2024)
Created September 8, 1999, Updated May 4, 2021