Distributed Intrusion Detection System based on Anticipation and Prediction Approach

Hajar Benmoussa; Anas Abou El Kalam; Abdallah Ait Ouahman

doi:10.5220/0005556803430348

Distributed Intrusion Detection System based on Anticipation and Prediction Approach

Hajar Benmoussa, Anas Abou El Kalam, Abdallah Ait Ouahman

2015

Abstract

Despite the importance and reputation of the current intrusion detection systems, their efficiency and effectiveness remain limited as they rely on passive defensive approaches. In fact, when an intrusion is detected by the IDS, it is already happened on the network and the time required to update security rules is usually short, which provide opportunity to the attacker to inflict damages that may paralyze the network. For this purpose we suggest a new approach of distributed intrusion detection system to wisely anticipate and predict intrusions before their first occurrence in the network to secure. Our approach is based on intelligent agents and using honeypot technology to gather a vast scope of information about attacks. Moreover it combines the two detection strategies "anomaly approach and misuse approach".

Download

Paper Citation

in Harvard Style

Benmoussa H., Abou El Kalam A. and Ait Ouahman A. (2015). Distributed Intrusion Detection System based on Anticipation and Prediction Approach . In Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015) ISBN 978-989-758-117-5, pages 343-348. DOI: 10.5220/0005556803430348

in Bibtex Style

@conference{secrypt15,
author={Hajar Benmoussa and Anas Abou El Kalam and Abdallah Ait Ouahman},
title={Distributed Intrusion Detection System based on Anticipation and Prediction Approach},
booktitle={Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015)},
year={2015},
pages={343-348},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005556803430348},
isbn={978-989-758-117-5},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015)
TI - Distributed Intrusion Detection System based on Anticipation and Prediction Approach
SN - 978-989-758-117-5
AU - Benmoussa H.
AU - Abou El Kalam A.
AU - Ait Ouahman A.
PY - 2015
SP - 343
EP - 348
DO - 10.5220/0005556803430348