Investigating Novel Immune-Inspired Multi-agent Systems for Anomaly Detection

Abstract

Due to the biological immune system applied to the field of computer security, immunological scientists have made much development for anomaly detection systems. However, there are still a number of significant hurdles to prevent it from solving real-world problems efficiently, such as the high false positive and false negative errors. In order to present a more feasible anomaly detection system, we outline multi-agent systems (MAS) to design an artificial immune system inspired by a novel immune theory- danger theory, following an appropriate evaluation tool (DCs) for network packets and a suitable mechanism of communication between agents. We set up two kinds of immune responses logically on both host layer and network layer to the coming intruders for the purpose of mitigating the damage and infection. We hope that this system will eventually become more powerful as a distributed immune system, based on the sound immunological concepts.