An Immune Danger Theory Inspired Model for Network Security Monitoring

Abstract

In order to overcome the deficiencies of the traditional Artificial Immune Systems (AIS) in the security field of computer information system, an immune danger theory inspired model for network security monitoring is proposed in this paper. After introducing the back ground to the danger theory, a novel model for network security monitoring is presented. With the formal definitions of antigen, antibody, and detector improved, the computation method of affinity and danger signal are described. And then, the network attack monitoring algorithm is given. Theoretical analysis results show that the proposed model is feasible. Thus, it provides a good solution to the security assurance of computer information systems.