A Multi-agents Intrusion Detection System Using Ontology and Clustering Techniques

Abstract : Nowadays, the increase in technology has brought more sophisticated intrusions. Consequently, Intrusion Detection Systems (IDS) are quickly becoming a popular requirement in building a network security infrastructure. Most existing IDS are generally centralized and suffer from a number of drawbacks, e.g., high rates of false positives, low efficiency, etc, especially when they face distributed attacks. This paper introduces a novel hybrid multi-agents IDS based on the intelligent combination of a clustering technique and an ontology model, called OCMAS-IDS. The latter integrates the desirable features provided by the multi-agents methodology with the benefits of semantic relations as well as the high accuracy of the data mining technique. Carried out experiments showed the efficiency of our distributed IDS, that sharply outperforms other systems over real traffic and a set of simulated attacks.
Document type :
Conference papers
Complete list of metadatas

Cited literature [19 references]  Display  Hide  Download

https://hal.inria.fr/hal-01789978
Contributor : Hal Ifip <>
Submitted on : Friday, May 11, 2018 - 3:11:58 PM
Last modification on : Thursday, October 17, 2019 - 12:33:23 PM
Long-term archiving on : Tuesday, September 25, 2018 - 12:20:42 AM

File

339159_1_En_31_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Imen Brahmi, Hanen Brahmi, Sadok Yahia. A Multi-agents Intrusion Detection System Using Ontology and Clustering Techniques. 5th International Conference on Computer Science and Its Applications (CIIA), May 2015, Saida, Algeria. pp.381-393, ⟨10.1007/978-3-319-19578-0_31⟩. ⟨hal-01789978⟩

Share

Metrics

Record views

375

Files downloads

270