www.csl.issres.net Vol. 1 (1) – June 2009 Biological Inspired Intrusion Prevention and Self- healing System for Network Security Based on Danger Theory Muna Elsadig 1 , Azween Abdullah 1 1 Department of Computer and Information Science Universiti Teknologi PETRONAS Bandar Seri Iskandar, 31750 Tronoh, Perak,Malaysia Abstract This paper presents a model for intrusion prevention and self-healing system for network security. The model detects, prevents, and heals harmful events, which are the actual reasons for damage of any of the system’s components. The proposed model explores the design and implementation of artificial immune systems (AISs) inspired by the human immune system. A novel approaches for network security based on the combination of biological intrusion prevention (IP) and self-healing concepts are implemented in the proposed model. These approaches are based upon data inspired by the human immune system (HIS), which applied to the autonomous defence system. The system integrates an artificial immune intrusion prevention system for network security inspired by the immunology theory known as danger theory and adaptive immune system. The present model looks at the danger model and its application to attack defence in order to create a fully decentralized model. The intrusion prevention system (IPS) analyzes the behaviour of system processes and network traffic to detect harmful events. Abnormal behaviours are the actual reason for damage of any of the system’s components. The detection of the damage caused by different types of malicious events or attack profiles is used to trigger the self - healing (SH) mechanism. This system is autonomous and enhances the fault repair and system recovery. Keywords—Artificial immune system, Network Security, intrusion prevention, Self-healing, agent 1 c Corresponding Author: S.A. Ibrahim Email: saibrahim@um.edu.my Telephone: +607 5046378 Fax: +607 5046378 © 2009-2012 All rights reserved. ISSR Journals