Strathprints logo
Strathprints Home | Open Access | Browse | Search | User area | Copyright | Help | Library Home | SUPrimo

Danger theory and intrusion detection : possibilities and limitations of the analogy

Vella, M. and Roper, M. and Terzis, S. (2010) Danger theory and intrusion detection : possibilities and limitations of the analogy. In: Artificial Immune Systems. Lecture Notes in Computer Science . Springer, pp. 276-289. ISBN 978-3-642-14546-9

Full text not available in this repository. (Request a copy from the Strathclyde author)

Abstract

Metaphors derived from Danger Theory, a hypothesized model of how the human immune system works, have been applied to the intrusion detection domain. The major contribution in this area, is the dendritic cell algorithm (DCA). This paper presents an in-depth analysis of results obtained from two previous experiments, regarding the suitability of the danger theory analogy in constructing intrusion detection systems for web applications. These detectors would be capable of detecting novel attacks while improving on the limitations of anomaly-based intrusion detectors. In particular, this analysis investigates which aspects of this analogy are suitable for this purpose, and which aspects of the analogy are counterproductive if utilized in the way originally suggested by danger theory. Several suggestions are given for those aspects of danger theory that are identified to require modification, indicating the possibility of further pursuing this approach. These modifications could be realized in terms of developing a robust signal selection schema and a suitable correlation algorithm. This would allow for an intrusion detection approach that has the potential to overcome those limitations presently associated with existing techniques.

Item type: Book Section
ID code: 32885
Notes: Lecture Notes in Computer Science, 2010, Volume 6209/2010, 276-289
Keywords: intrusion detection , danger theory, artificial immune systems, Electronic computers. Computer science, Computational Theory and Mathematics
Subjects: Science > Mathematics > Electronic computers. Computer science
Department: Faculty of Science > Computer and Information Sciences
Related URLs:
Depositing user: Pure Administrator
Date Deposited: 01 Sep 2011 14:14
Last modified: 06 Sep 2014 07:05
URI: http://strathprints.strath.ac.uk/id/eprint/32885

Actions (login required)

View Item