An Edge IDS Based on Biological Immune Principles for Dynamic Threat Detection
Table 7
The detailed steps of GIDA.
Step 1
Acquire information monitored.
Step 2
Take out genes. Gene detection is done. Once a match is successful, then alert.
Step 3
Generate strings with equal length in random, achieve an initial antibody population. Carry out niching strategy, use immune operators, and get nonself set.
Step 4
Evolve population, obtain next generation antibodies from population mentioned in step 3.
Step 5
Consider the nonself strings as a detecting aim, select antibodies by niching strategy. Gain the first-generation detector.
Step 6
For several different types of attacks, detecting the system files using the 1st detector.
Step 7
If match is successful, a part of antigens detected becomes vaccines. They can be added into vaccine library. And alert occurs and reports to the monitor layer. Generating vaccines and return step 4, continue.
