Immuno-Inspired Security Defense Mechanisms for Computer Systems
An Intrusion Detection System (IDS) is a new safeguard technology for network system security after traditional technologies, such as access control, firewall and message encryption. The IDS can look for the evidence in the Hosts or the networks to detect some latent threat, and gives passive alerts to the administrators or takes active measures without intervening. However, the IDS has drawbacks in many aspects, among of which the two outstanding problems are the high ratio of false alarms and the lack of self-adaptation. Inspired by the powerful information processing capabilities of the Biological Immune System (BIS), a novel multi-level active security defense mechanism for computer systems is proposed and described.