Internet Archive Scholar

A Systematic State-of-The-Art Analysis of Multi-Agent Intrusion Detection

I. A. Saeed, A. Selamat, M. Rohani, O. Krejcar, J. Chaudhry
2020 IEEE Access  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (2.5 MB)
https://web.archive.org/web/20200930194205/https://ieeexplore.ieee.org/ielx7/6287639/6514899/09207913.pdf?tp=&arnumber=9207913&isnumber=6514899&ref=

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

Multi-agent architectures have been successful in attaining considerable attention among computer security researchers. This is so, because of their demonstrated capabilities such as autonomy, embedded intelligence, learning and self-growing knowledge-base, high scalability, fault tolerance, and automatic parallelism. These characteristics have made this technology a de facto standard for developing ambient security systems to meet the open and dynamic nature of today's online communities.
more » ... ugh multi-agent architectures are increasingly studied in the area of computer security, there is still not enough empirical evidence on their performance in intrusions and attacks detection. The aim of this paper is to report the systematic literature review conducted in the context of specific research questions, to investigate multi-agent IDS architectures to highlight the issues that affect their performance in terms of detection accuracy and response time. We used pertinent keywords and terms to search and retrieve the most recent research studies, on multi-agent IDS architectures, from the major research databases and digital libraries such as SCOPUS, Springer, and IEEE Explore. The search processes resulted in a number of studies; among them, there were journal articles, book chapters, conference papers, dissertations, and theses. The obtained studies were assessed and filtered out, and finally, there were over 71 studies chosen to answer the research questions. The results of this study have shown that multi-agent architectures include several advantages that can help in the development of ambient IDS. However, it has been found that there are several issues in the current multi-agent IDS architectures that may degrade the accuracy and response time of intrusions and attacks detection. Based on our findings, the issues of multi-agent IDS architectures include limitations in the techniques, mechanisms, and schemes used for multi-agent IDS adaptation and learning, load balancing, scalability, fault-tolerance, and high communication overhead. It has also been found that new measurement metrics are required for evaluating multi-agent IDS architectures.
doi:10.1109/access.2020.3027463 fatcat:vaudgewisnhihghc4f3xa3otby
DOAJ
Citation

I. A. Saeed, A. Selamat, M. Rohani, O. Krejcar, J. Chaudhry. "A Systematic State-of-The-Art Analysis of Multi-Agent Intrusion Detection." IEEE Access (2020) 1-1