Inspired by biological immune system,a new dynamic detection model for com-puter virus based on immune system is proposed. The quantitative description of the model is given. The problem of dynamic description for self and nonself in a computer virus immune system is solved,which reduces the size of self set. The new concept of dynamic tolerance,as well as the new mechanisms of gene evolu-tion and gene coding for immature detectors is presented,improving the generat-ing efficiency of mature detectors,reducing the false-negative and false-positive rates. Therefore,the difficult problem,in which the detector training cost is expo-nentially related to the size of self-set in a traditional computer immune system,is thus overcome. The theory analysis and experimental results show that the pro-posed model has better time efficiency and detecting ability than the classic model ARTIS.
构建了一种基于免疫多智能体的网络入侵主动防御模型ADNII MA(the active defense model for net-workintrusion based oni mmune multi-agent),提出免疫智能体概念,建立免疫智能体的逻辑结构及其运行机制,实现了对网络入侵的多层次、分布式主动防御机制,为网络安全保障提供一种新的思路。
Inspired by the immune theory and multi-agent sys- tems, an immune multi-agent active defense model for network intrusion is established. The concept of immune agent is intro- duced, and its running mechanism is established. The method, which uses antibody concentration to quantitatively describe the degree of intrusion danger, is presented. This model implements the multi-layer and distributed active defense mechanism for net- work intrusion. The experiment results show that this model is a good solution to the network security defense.
LIU Sunjun LI Tao WANG Diangang HU Xiaoqing XU Chun