Distributed Self-organized Collaboration of Autonomous IDS Sensors

  • Karel Bartos
  • Martin Rehak
Part of the Lecture Notes in Computer Science book series (LNCS, volume 7279)


We present distributed self-organized model for collaboration of multiple heterogeneous IDS sensors. The adaptation model is based on a game-theoretical approach that optimizes the behavior of each IDS node with respect to other nodes in highly dynamic environment. We performed initial experimental evaluation of the proposed collaboration model on two autonomous IDS detectors deployed on different parts of university network. We show that this Intrusion Detection Network significantly improves the detection effectiveness and brings advanced defensive mechanism against novel highly sophisticated threats.


False Alarm Rate Intrusion Detection Intrusion Detection Network Regret Minimization Alert Correlation 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    Blum, A., Mansour, Y.: Learning, regret minimization and equilibria. In: Algorithmic Game Theory, ch. 4, pp. 79–101. Cambridge University Press (2007)Google Scholar
  2. 2.
    Elshoush, H.T., Osman, I.M.: Alert correlation in collaborative intelligent intrusion detection systems–a survey. Applied Soft Computing (2011)Google Scholar
  3. 3.
    Rehak, M., Pechoucek, M., Grill, M., Stiborek, J., Bartos, K., Celeda, P.: Adaptive multiagent system for network traffic monitoring. IEEE Intelligent Systems 24(3), 16–25 (2009)CrossRefGoogle Scholar
  4. 4.
    Sutton, R.S., Barto, A.G.: Reinforcement Learning: An Introduction. The MIT Press (March 1998)Google Scholar

Copyright information

© IFIP International Federation for Information Processing 2012

Authors and Affiliations

  • Karel Bartos
    • 1
  • Martin Rehak
    • 1
  1. 1.Faculty of Electrical EngineeringCzech Technical University in PraguePragueCzech Republic

Personalised recommendations