Abstract
Preventing unauthorised access to corporate information systems is essential for many organisations. To address this problem we built a security enhancement software system using software agents, in which a core software agent resides on a server and user end software agents reside at each user workstation. By downloading a pattern of typical user behaviour and rules governing invalid behaviour from a core agent to each user end agent, all decisions and actions about atypical or invalid user behaviour can be taken by a user agent. This permits security detection to continue even when the core agent fails to operate.
Original language | English |
---|---|
Title of host publication | Proceedings Seventh IEEE International Conference and Workshop on the Engineering of Computer-Based Systems (ECBS 2000) |
Publisher | IEEE |
Pages | 211-217 |
Number of pages | 7 |
Volume | 1 |
ISBN (Print) | 0769506046 |
DOIs | |
Publication status | Published - 6 Aug 2002 |
Keywords
- intelligent agent security
- software agents
- computer networks
- computer security
- monitoring
- information security
- workstations
- information systems
- software systems
- intrusion detection