Intrusion detection system framework based on collaborative dispatch mechanism
一种基于协同调度的入侵检测框架

The shortages of current intrusion detection systems were analyzed, and the necessity of collaboration was discussed. A mutiagent collaborative intrusion detection framework was put forward. It adopted distributed detection and centralized analysis architecture, generic alert form and secure transfer protocol in this system, unified dispatch by coordinate engine to manage cooperative request, collect relative data and distribute alerts and new rules. This system can well implement information sharing among multiagents and achieve collaborative detection after test and application.