Definition[]
Active Network Intrusion Defense (ANID) is
“ | [t]he capability to respond in real time to network intrusions by making changes to network devices such as routers, firewalls, intrusion detectors, etc. | ” |
Overview[]
The ANID system will automatically disable routes used by a hacker. ANID will also employ a distributed architecture with intrusion-detection capabilities installed at very low levels, as well as a collection of smart agents to correlate sensor information and distribute summary-level alert information to neighboring nodes.