| In recent years, with the rapid development of information construction, the Ministry of Public Security officially launched the National Police Information Project - Golden Shield Project in 2002, which quickly set off a building boom of the Golden Shield Project. Because of the special nature and sensitivity of public security work, it is very important to establish a network security system, which not only can be adapt to the development of the situation and requirements but also can withstand different kinds of attacks. Because the means of various network attacks has been experiencing diverse, complex and intelligent trend, the traditional firewall, data encryption technology, and other static defense can hardly meet the needs of Golden Shield Project security needs. As a pro-active security measures, Intrusion Detection System (Intrusion Detection System, IDS) can not only detect network intrusions from the outside, but also supervise the unauthorized activities of inner users. At the same time, it can effectively cover defects of traditional security and protection techniques. Undoubtedly, introducing the intrusion detection system into Golden Shield Project Construction as an important major component is adapt to the currency situation and needs.A Public Security Bureau of a city in the PRD has started the plan of Golden Shield project, in which network security system has been a very important part, and the Intrusion Detection System has been included in the deployment plan. The popular Web-based intrusion detection systems and host-based intrusion detection system has been introduced into the system.Faced with the growing network traffic, the updated network facilities and varied attacks, the currency popular Intrusion Detection models increasingly exposed their deficiencies. The in-depth academic study showed that the application of Distributed Intrusion Detection System can be used to avoid some of these deficiencies, especially the combination of the field of artificial intelligence agent (Agent) technology - based on Intelligent Agent Distributed Intrusion Detection System, has significantly improved the flexibility of the system and enhanced the intrusion detection rate, while reducing false alarm rate and leakage rate. It gradually become hot research direction and will be a more efficient security for network information.This paper attempts to analyze and design an intelligent agent-based Distributed Intrusion Detection System basing on the case of Golden Shield Project of a city and try to integrate the distributed architecture with the design based on intelligent agent software. Through the design of a distributed intrusion detection system based on mutual communication collaborative multi-agent detection to detect the mutual communication between control center and agents, as well as the mutual communication among agents, and to realize the network-based intrusion detection in the agent terminal, thus achieve the intrusion detection function within the scope of the overall situation. It will has a clear system architecture and good scalability, lower occupancy of network systems and mainframe resources and supply a better choice for the future Golden Shield Project security system building. |
