Re: Suggestions

[whitty reeve <whitty () reeve com>]

Hey, you're going to have to figure out some way of making this AI learn. I 
suggest a neural net, and when it learns something it connects neurons 
together. When something is learned, tested, fork that neuron set, and each 
time you have a new intrusion learned, it will have a much faster reaction 
time. The problem is, your system will have to connect the 'dots.' This means 
that atleast one system will have to be infected/intruded for it to know that 
something 'bad' happened, and want to prevent against it next time. I suppose 
this could be linked to a huge network, so when ever a computer is infected 
it uploads the new neuron set to some kind of data base, effectively making 
that kind of intrusion impossible on all machines running this software.

On Tuesday 25 May 2004 12:10, Thiago dos Santos Guzella wrote:
> Hi there,
>
> I am taking part in a research project on artificial inteligence, and my
> objective is to create a IDS (possibly hybrid), capable of detecting
> attacks never seeing before (by using some artificial inteligence
> algorithms). I would like to hear suggestions on which aspects of network
> trafiic should I focus on ...
> Thanks in advance.


---------------------------------------------------------------------------

---------------------------------------------------------------------------