Skip to Main Content
Nowadays with the growing scale of computer network as well as the number of nodes, the traditional method of mobile agent based distributed intrusion detection system may cause severe problem of network congestion and time delay, for the data processing of all the nodes are converged to the central node which will lead to a mass data processing on it. In this article we bring up a mobile agent and snort based distributed intrusion detection system (short for MASDIDS). It does data collection, analysis and response on the supervisory node and the result is analyzed by mobile agent. Therefore, the central server only has to take down the intrusion behavior and manage components, because most calculation is distributed to the supervisory nodes. The problem of excessive flow in the system processing center will not exist, so that the real-time of the system will be enhanced.