International Journal of Computer Applications (0975 – 8887) Volume 113 – No. 12, March 2015 33 A Real Time Host and Network Mobile Agent based Intrusion Detection System (HNMAIDS) Abhijit Dwivedi Department of C.S.E Radharaman Engineering College Bhopal, (M.P.) Y.K. Rana Department of C.S.E Radharaman Engineering College Bhopal, (M.P.) B.P. Patel Department of C.S.E Radharaman Engineering College Bhopal, (M.P.) ABSTRACT Computer security is to detect or prevent the process of collecting information or unauthorized access to computers. Detection is a recognition process which helps us to determine if someone tried to enter our system that have been successful, however, and what can be done. Prevention measures help us to pursue unauthorized users called as intruders from accessing any part of the computer system. Computer is being used for everything from banking and investment, businesses to communicate with others via email or messenger programs. Although It may not consider communications top secret, It probably do not want strangers reading email, using computer to attack or intrusion other systems, sending forged messages or email from computer, or examining personal information stored on our computer (such as financial statements). Intruders (also referred to as attackers, crackers) may not care about our identity. Often, they want to take control of the computer, so you can use it to launch attacks on the computer systems. So, they (attackers) hide the control of our computers from their true lease and launch attacks or intrusions, often against very high-profile computer systems like government or financial systems. This research is the study on computer security using proposed A Real Time Host and Network Mobile Agent based Intrusion Detection System (HNMAIDS) which will enhance efficiency as compare earlier agent based intrusion detection system. An Agent based intrusion detection system is intended to detect suspicious behavior on the network/host through agent, where agent will send an alerts signal to the network administrators and so an administrator can prevent intrusions as well as attacks. Presented results are showing the performance of the proposed HNMAIDS. Keywords Intrusion Detection System (IDS), Agent Based, Network security(NS) Layers, Attacks, Network Intrusion Detection System (NIDS), Host Intrusion Detection System (HIDS). 1. INTRODUCTION Over the last fifteen years the world has experienced a wide variety of computer threats and general computer security problems. The problem of managing and protecting information has existed long before information and communication technology came into being [13,14]. However, as technology advances and information management systems become more and more complicated; the problem of enforcing information security also becomes more critical [20]. The widespread use of communication networks for all purposes of computing is posing new serious security threats and increases the potential damage that security violations may cause. As organizations use of and reliance upon information increases, so too does their reliance on computer network and distributed computing environments, which become more vulnerable to security breaches [21]. This reliance requires advanced, intelligent, secure and safe information security systems to protect the organization’s assets and information, in autonomic and intelligent ways. As communication advances and information management systems become more and more powerful and distributed, organizations are becoming increasingly vulnerable to potential security threats such as intrusions at all levels of Information Communication Technology (ICT) [22- 23]. There is an urgency to provide secure and safe information security system through the use of firewalls, Intrusion Detection Systems (IDSs), Intrusion Prevention Systems (IPSs), encryption, authentication, and other hardware and software solutions [24]. Many intrusion detection and prevention systems have been designed, but still there are significant drawbacks. Some of these drawbacks are low detection efficiency, inaccurate prevention schemes and high false alarm rates. Since IDSs and IPSs have become necessary security tools for detecting and preventing attacks on ICT resources, it is essential to upgrade the previous designs, techniques and methods to overcome flaws [25-26]. Anomaly detection is an essential component of the detection mechanism against unknown attacks but this requires advanced techniques to be better and more effective. Proposed research entitled “A Real Time Host and Network Mobile Agent Based Intrusion Detection System (HNMAIDS)” is an intrusion detection system (IDS), conceptualized with mobile agent and works for host system as well as network system. Performance of the Proposed HNMAIDS is evaluated on selected performance parameters like intrusion finding capability on layers wise. The proposed HNMAIDS has three agents for NIDS and working of each agent is separate from each other. These entire agents will work independently but they all are dependent with each other whenever one agent will not pass signal in terms of object then second agent will not work and whenever second agent will not pass signal to third one agent then it will also not work [20-21]. The proposed HNMAIDS offers so many advantages over alternative IDS like higher security, high availability and scalability, and it having good capability to find out normal and abnormal behaviors of captured packet. The HNMAIDS includes integration of individual agent to produced good results. It supports to an administrator of the network as well as host the privileges for finding the intrusions which is reliable, secure and fast. The HNMAIDS implemented in short time and at a low cost. It also provides a best user interface.