Agent Based Distributed and Cooperative Intrusion Detection for Mobile Ad Hoc Networks

Award Information
Agency: Department of Defense
Branch: Army
Contract: W911NF-05-C-0030
Agency Tracking Number: A043-064-1806
Amount: $120,000.00
Phase: Phase I
Program: SBIR
Awards Year: 2005
Solitcitation Year: 2004
Solitcitation Topic Code: A04-064
Solitcitation Number: 2004.3
Small Business Information
15400 Calhoun Drive, Suite 400, Rockville, MD, 20855
Duns: 161911532
Hubzone Owned: N
Woman Owned: Y
Socially and Economically Disadvantaged: N
Principal Investigator
 Roger Xu
 Principal Scientist
 (301) 294-5242
Business Contact
 Mark James
Title: Contracts and Proposals Manager
Phone: (301) 294-5221
Research Institution
In this proposal, Intelligent Automation, Inc. (IAI) and its consultant, Dr. Wenke Lee, propose to develop an intelligent agent-based distributed and cooperative anomaly and fault monitoring architecture for mobile ad-hoc network (MANET). In our proposed architecture, an anomaly and fault detection agent runs at each "monitoring" node and performs local data collection and local detection. Once an anomaly or fault is detected by a local "monitoring" agent, it collaborates with neighboring "monitoring" agents to perform cooperative detection, to investigate the source of the anomaly or fault, and to take cooperative response actions. We will develop an adaptive learning-based approach for building anomaly and fault detection models, which can be applied to both local and cooperative detection. RIPPER and Support Vector Machines (SVMs) will be used to detect intrusions and faults in MANET. The multi-agent cooperative monitoring and communication architecture will be designed based on IAI's novel Cybele agent infrastructure. The key innovations of the proposed architecture include: 1) dynamical and flexible configuration based on the agent technology; 2) the learning-based detection framework is able to detect new attacks or fautls; 3) low false alarm rate by using a cooperative detection engine; 4) excellent classification performance of RIPPER and SVMs, etc.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government