Design and implementation of a novel enterprise network defense system bymaneuveringmulti-dimensional network properties

2019 ◽  
Vol 20 (2) ◽  
pp. 238-252
Author(s):  
Yang Chen ◽  
Hong-chao Hu ◽  
Guo-zhen Cheng
Keyword(s):  
Defense System ◽  
Enterprise Network ◽  
Network Defense ◽  
Design And Implementation ◽  
Dimensional Network ◽  
Network Properties

scholarly journals Network dynamic defense system based on holographic transformation

2020 ◽  
Vol 16 (5) ◽  
pp. 155014772091874
Author(s):  
Jinglei Tan ◽  
Cheng Lei ◽  
Hongqi Zhang ◽  
Hao Hu ◽  
Hengwei Zhang
Keyword(s):  
Network Structure ◽  
High Stability ◽  
Network Dynamic ◽  
Defense System ◽  
Management Mechanism ◽  
Enterprise Network ◽  
Network Defense ◽  
Hash Algorithm ◽  
Address Generation ◽  
Ciphertext Policy

Aimed at the problem of the boundary defense easily being out of availability caused by the static network structure, a novel dynamic enterprise network defense system based on holographic transformation is designed and implemented. To increase the uncertainty of network structure and the position of target nodes, the network view is dynamically changed by constantly transforming endpoint information. Virtual endpoint mutation and hopping period selection are achieved by the hopping address generation module. It takes the advantages of anti-collision and good randomicity of the Chinese national SM3 hash algorithm. The full-cycle hopping period is managed and controlled by the hopping period management mechanism based on the ciphertext policy attribute-based broadcast holographic transformation. Experiments show that the system achieves expected security goals and has good interactivity and high stability.

Mobile Agent Based Network Defense System in Enterprise Network

2011 ◽  
Vol 2 (1) ◽  
pp. 41-54
Author(s):  
Yu Cai
Keyword(s):  
Intrusion Detection ◽  
Mobile Agents ◽  
Autonomous Agents ◽  
Handheld Devices ◽  
System Control ◽  
Traffic Classification ◽  
Enterprise Network ◽  
Network Defense ◽  
Software Modules ◽  
Resource Allocation Scheme

Security has become the Achilles’ heel of many organizations in today’s computer-dominated society. In this paper, a configurable intrusion detection and response framework named Mobile Agents based Distributed (MAD) security system was proposed for enterprise network consisting of a large number of mobile and handheld devices. The key idea of MAD is to use autonomous mobile agents as lightweight entities to provide unified interfaces for intrusion detection, intrusion response, information fusion, and dynamic reconfiguration. These lightweight agents can be easily installed and managed on mobile and handheld devices. The MAD framework includes a family of autonomous agents, servers and software modules. An Object-based intrusion modeling language (mLanguage) is proposed to allow easy data sharing and system control. A data fusion engine (mEngine) is used to provide fused results for traffic classification and intrusion identification. To ensure Quality-of-Service (QoS) requirements for end users, adaptive resource allocation scheme is also presented. It is hoped that this project will advance the understanding of complex, interactive, and collaborative distributed systems.

Research of Immune Network Defense System Based on Black Hole Theory

2014 ◽  
Vol 543-547 ◽  
pp. 3023-3028
Author(s):  
Shao Jing Zhou
Keyword(s):  
Black Hole ◽  
Situation Awareness ◽  
Control Method ◽  
Defense System ◽  
Artificial Immune ◽  
Hole Theory ◽  
Network Defense ◽  
Active Defense ◽  
Radiation Theory ◽  
Defense Technology

Active defense technology may predict future attack situation and detect unknown attacks, but it has many questions to will be researched: vulnerability, lower mal-ware detection rate, security situation awareness technology has faced problem of inter-organization cooperation, real-time response, correlation analysis, high-load low fault tolerance. Artificial immune technology combines with active defense technology to solve integrated artificial immune security situation awareness system with artificial immune technology and active defense technology by Black Hole theory and for diversification ad development characteristics of the artificial immune and active defense, gives a method about simulating Black Hole accretion theory to achieve absorption and utilization a variety of security and virus technology; a no escaped mechanism simulate the Black Hole; a method about access control method based on Hawking radiation theory. Based on the above work, applies virtual and sandbox technology to achieve network system itself virus immunity, and then that we implement re-engineering and reverse engineering for virus technology in order to study virus and dig more holes, create unified integrated defense tactics, so this defense system will improve ability of situation comprehension, situation prediction and intelligence decision.

scholarly journals Design and Implementation of a Defense System from TCP Injection Attacks

2016 ◽  
Vol 9 (40) ◽  
Author(s):  
G. Ranjith ◽  
J. Vijayachandra ◽  
B. Prathusha ◽  
P. Sagarika
Keyword(s):  
Defense System ◽  
Design And Implementation ◽  
Injection Attacks

Mobile Agent Based Network Defense System in Enterprise Network

2013 ◽  
pp. 54-69
Author(s):  
Yu Cai
Keyword(s):  
Intrusion Detection ◽  
Mobile Agents ◽  
Handheld Devices ◽  
System Control ◽  
Traffic Classification ◽  
Enterprise Network ◽  
Network Defense ◽  
Response Information ◽  
Software Modules ◽  
Resource Allocation Scheme

Security has become the Achilles’ heel of many organizations in today’s computer-dominated society. In this paper, a configurable intrusion detection and response framework named Mobile Agents based Distributed (MAD) security system was proposed for enterprise network consisting of a large number of mobile and handheld devices. The key idea of MAD is to use autonomous mobile agents as lightweight entities to provide unified interfaces for intrusion detection, intrusion response, information fusion, and dynamic reconfiguration. These lightweight agents can be easily installed and managed on mobile and handheld devices. The MAD framework includes a family of autonomous agents, servers and software modules. An Object-based intrusion modeling language (mLanguage) is proposed to allow easy data sharing and system control. A data fusion engine (mEngine) is used to provide fused results for traffic classification and intrusion identification. To ensure Quality-of-Service (QoS) requirements for end users, adaptive resource allocation scheme is also presented. It is hoped that this project will advance the understanding of complex, interactive, and collaborative distributed systems.

Sign in / Sign up

Export Citation Format

Share Document