ARSoS: An Adaptive, Robust, and Sub-Optimal Strategy for Automated Deployment of Anomaly Detection System in MANETs

Zonghua Zhang, Farid Naït-Abdesselam, Soufiene Djahel

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

3 Citations (Scopus)

Abstract

While a variety of AIDS (Anomaly-based Intrusion Detection System) are claimed to be fully distributed, light-weight, and ready for application, their detection cost are not always neglectable, especially when considering the fact that MANET nodes have scarce resources which usually impels them to avoid any unnecessary action. It is therefore a significant issue to optimally deploy AIDS sensors to achieve a better tradeoff between performance and detection cost. However, this optimization problem is challenging in essence because of the special characteristics of MANETs. In particular, the deployment strategy must be adaptive to capture nodes' mobility and robust to detection failures resulted from either accidental system error or intentional subversion. In this paper, we propose an adaptive, robust, and sub-optimal strategy, called ARSoS, to tackle this issue. ARSoS treats each AIDS sensor as an independent agent, and then formulates the sensors' cooperative behavior as a decentralized decision problem. Since each AIDS sensor is only aware of partial information about the other sensors and the neighboring nodes, a reward signal integrating both local observations and global detection measures is introduced to guide the overall cooperation of sensors. An online policy gradient algorithm is then applied to solve the formulated problem. To validate the ARSoS system in terms of adaptability, robustness and optimality, we conducted extensive simulations of an implemented prototype and the obtained results highlight a good performance of the system.

Original languageEnglish
Title of host publicationIWCMC 2008 - International Wireless Communications and Mobile Computing Conference
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages606-613
Number of pages8
ISBN (Electronic)9781424422029
ISBN (Print)9781424422012
DOIs
Publication statusPublished - 15 Aug 2008
Externally publishedYes
EventInternational Wireless Communications and Mobile Computing Conference - Crete, Greece
Duration: 6 Aug 20088 Aug 2008

Publication series

Name International Wireless Communications and Mobile Computing Conference
PublisherIEEE
ISSN (Print)2376-6492
ISSN (Electronic)2376-6506

Conference

ConferenceInternational Wireless Communications and Mobile Computing Conference
Abbreviated titleIWCMC 2008
Country/TerritoryGreece
CityCrete
Period6/08/088/08/08

Fingerprint

Dive into the research topics of 'ARSoS: An Adaptive, Robust, and Sub-Optimal Strategy for Automated Deployment of Anomaly Detection System in MANETs'. Together they form a unique fingerprint.

Cite this