The Agents and Data Mining integration has emerged as a promising area for disributed problems solving. Applying this integration on distributed firewalls will facilitate the anomalies detection process. In this chapter, we present a set of algorithms and mining techniques to analyse, manage and detect anomalies on distributed firewalls' policy rules using the multi-agent approach; first, for each firewall, a static agent will execute a set of data mining techniques to generate a new set of efficient firewall policy rules. Then, a mobile agent will exploit these sets of optimized rules to detect eventual anomalies on a specific firewall (intra-firewalls anomalies) or between firewalls (inter-firewalls anomalies). An experimental case study will be presented to demonstrate the usefulness of our approach. © 2009 Springer-Verlag US.
CITATION STYLE
Karoui, K., Ftima, F. B., & Ghezala, H. B. (2009). A multi-agent framework for anomalies detection on distributed firewalls using data mining techniques. In Data Mining and Multi-Agent Integration (pp. 267–278). Springer US. https://doi.org/10.1007/978-1-4419-0522-2_18
Mendeley helps you to discover research relevant for your work.