{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,15]],"date-time":"2026-05-15T06:49:13Z","timestamp":1778827753166,"version":"3.51.4"},"reference-count":48,"publisher":"Emerald","issue":"4","license":[{"start":{"date-parts":[[2013,10,7]],"date-time":"2013-10-07T00:00:00Z","timestamp":1381104000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013,10,7]]},"abstract":"<jats:sec><jats:title content-type=\"abstract-heading\">Purpose<\/jats:title><jats:p>\u2013 Anomaly detection of network attacks has become a high priority because of the need to guarantee security, privacy and reliability. This work aims to describe both intelligent immunological approaches and traditional monitoring systems for anomaly detection.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Design\/methodology\/approach<\/jats:title><jats:p>\u2013 Author investigated different artificial immune system (AIS) theories and proposes how to combine different ideas to solve problems of network security domain. An anomaly detection system that applies those ideas was built and tested in a real time environment, to test the pros and cons of AIS and clarify its applicability. Rather than building a detailed signature based model of intrusion detection system, the scope of this study tries to explore the principle in an immune network focusing on its self-organization, adaptive learning capability, and immune feedback.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Findings<\/jats:title><jats:p>\u2013 The natural immune system has its own intelligent mechanisms to detect the foreign bodies and fight them and without it, an individual cannot live, even just for several days. Network attackers evolved new types of attacks. Attacks became more complex, severe and hard to detect. This results in increasing needs for network defense systems, especially those with ability to extraordinary approaches or to face the dynamic nature of continuously changing network threats. KDD CUP'99 dataset are used as a training data to evaluate the proposed hybrid artificial immune principles anomaly detection. The average cost of the proposed model was 0.1195 where that the wining of KDD99 dataset computation had 0.233.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Originality\/value<\/jats:title><jats:p>\u2013 It is original to introduce investigation on the vaccination biological process. A special module was built to perform this process and check its usage and how it could be formulated in artificial life.<\/jats:p><\/jats:sec>","DOI":"10.1108\/imcs-11-2012-0063","type":"journal-article","created":{"date-parts":[[2013,10,18]],"date-time":"2013-10-18T09:01:33Z","timestamp":1382086893000},"page":"288-314","source":"Crossref","is-referenced-by-count":4,"title":["Anomaly detection based on hybrid artificial immune principles"],"prefix":"10.1108","volume":"21","author":[{"given":"Tarek","family":"Salah Sobh","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2022020820062388600_b1","unstructured":"Abdelhaq, M. , Hassan, R. , Ismail, M. and Israf, D. (2011), \u201cDetecting resource consumption attack over MANET using an artificial immune algorithm\u201d, Research Journal of Applied Sciences, Engineering and Technology, Vol. 3 No. 9, pp. 1026-1033."},{"key":"key2022020820062388600_b2","unstructured":"August, Z. (2006), \u201cNegative selection algorithms: from the thymus to V-detector\u201d, PhD dissertation, The University of Memphis, Memphis, TN."},{"key":"key2022020820062388600_b3","unstructured":"Axelsson, S. (1999), \u201cIntrusion detection systems: a survey and taxonomy\u201d, Technical Report No. 99-15, Chalmers University of Technology, Gothenburg."},{"key":"key2022020820062388600_b4","doi-asserted-by":"crossref","unstructured":"Balthrop, J. , Forrest, S. and Glickman, M. (2002), \u201cRevisiting LISYS: parameters and normal behavior\u201d, Proceedings of the Congress on Evolutionary Computation CEC'02 (Cat. No. 02TH8600), 12-17 May, pp. 1045-1050.","DOI":"10.1109\/CEC.2002.1004387"},{"key":"key2022020820062388600_b5","doi-asserted-by":"crossref","unstructured":"Boukerche, A. , Juca, K.R.L. , Sobral, J.B. and Notare, M.S.M.A. (2004), \u201cAn artificial immune based intrusion detection model for computer and telecommunication systems\u201d, Parallel Computing, Vol. 30 No. 2004, pp. 629-646.","DOI":"10.1016\/j.parco.2003.12.008"},{"key":"key2022020820062388600_b6","doi-asserted-by":"crossref","unstructured":"Dasgupta, D. (1999a), \u201cAn overview of artificial immune systems\u201d, in Dasgupta, D. (Ed.), Artificial Immune Systems and Their Applications, Springer, Berlin, pp. 3-21.","DOI":"10.1007\/978-3-642-59901-9_1"},{"key":"key2022020820062388600_b7","unstructured":"Dasgupta, D. (1999b), \u201cImmunity-based intrusion detection systems: a general framework\u201d, Proceeding of the 22nd National Information Systems Security Conference (NISSC), Crystal City, VA, USA, October, pp. 147-160."},{"key":"key2022020820062388600_b8","doi-asserted-by":"crossref","unstructured":"Dasgupta, D. and Gonzalez, F. (2002), \u201cAn immunity-based technique to characterize intrusions in computer networks\u201d, IEEE Transactions on Evolutionary Computation, Vol. 6 No. 3, pp. 281-291.","DOI":"10.1109\/TEVC.2002.1011541"},{"key":"key2022020820062388600_b9","doi-asserted-by":"crossref","unstructured":"Dasgupta, D. , Yu, S. and Majumdar, N. (2005), \u201cMILA-multilevel immune learning algorithm and its application to anomaly detection\u201d, Soft Computing Journal, Vol. 9 No. 3, pp. 172-184.","DOI":"10.1007\/s00500-003-0342-7"},{"key":"key2022020820062388600_b10","doi-asserted-by":"crossref","unstructured":"Debar, H. , Dacier, M. and Wespi, A. (1999), \u201cA revised taxonomy for intrusion detection systems\u201d, IBM Research Report.","DOI":"10.1016\/S1389-1286(98)00017-6"},{"key":"key2022020820062388600_b11","unstructured":"DeCastro, L.N. and Timmis, J. (2002), Artificial Immune Systems: A New Computational Intelligence Approach, Springer, London."},{"key":"key2022020820062388600_b12","doi-asserted-by":"crossref","unstructured":"de Paula, F.S. , de Castro, L.N. and de Geus, P.L. (2004), \u201cAn intrusion detection system using ideas from the immune system\u201d, Proceeding of IEEE Congress on Evolutionary Computation (CEC-2004), Portland, OR, USA, June, pp. 1059-1066.","DOI":"10.1109\/CEC.2004.1330979"},{"key":"key2022020820062388600_b13","unstructured":"Ebner, M. , Breunig, H. and Albert, J. (2002), \u201cOn the use of negative selection in an artificial immune system\u201d, Proceedings of GECCO-2002, New York, NY, USA, July, pp. 957-964."},{"key":"key2022020820062388600_b14","doi-asserted-by":"crossref","unstructured":"Forrest, S. , Hofmeyr, S. and Somayaji, A. (1997), \u201cComputer immunology\u201d, Communications of the ACM, Vol. 40 No. 10, pp. 88-96.","DOI":"10.1145\/262793.262811"},{"key":"key2022020820062388600_b15","doi-asserted-by":"crossref","unstructured":"Forrest, S. , Perelson, A. , Allen, L. and Cherukuri, R. (1994), \u201cSelf-nonself discrimination in a computer\u201d, Proceedings of the IEEE Symposium on Research in Security and Privacy IEEE Computer Society, Washington, DC, pp. 202-212.","DOI":"10.1109\/RISP.1994.296580"},{"key":"key2022020820062388600_b16","doi-asserted-by":"crossref","unstructured":"Galeano, J.C. , VelozaSuan, A. and Gonz\u00e1lez, F.A. (2005), \u201cComparative analysis of artificial immune network models\u201d, GECCO'05, Washington, DC, USA, 25-29 June.","DOI":"10.1145\/1068009.1068066"},{"key":"key2022020820062388600_b17","doi-asserted-by":"crossref","unstructured":"Greensmith, J. , Aickelin, U. and Twycross, J. (2004), \u201cImmune system approaches to intrusion detection \u2013 a review\u201d, Proceedings of ICARIS-2004, 3rd International Conference on Artificial Immune Systems, LNCS 3239, Catalania, Italy, pp. 316-329.","DOI":"10.1007\/978-3-540-30220-9_26"},{"key":"key2022020820062388600_b18","doi-asserted-by":"crossref","unstructured":"Harmer, P.K. , Williams, P.D. , Gunsch, G.H. and Lamont, G.B. (2002), \u201cAn artificial immune system architecture for computer security applications\u201d, IEEE Transaction on Evolutionary Computation, Vol. 6 No. 3, pp. 252-280.","DOI":"10.1109\/TEVC.2002.1011540"},{"key":"key2022020820062388600_b19","doi-asserted-by":"crossref","unstructured":"Hart, E. and Timmis, J. (2008), \u201cApplication areas of AIS: the past, the present and the future\u201d, Applied Soft Computing, Vol. 8, pp. 191-201.","DOI":"10.1016\/j.asoc.2006.12.004"},{"key":"key2022020820062388600_b20","unstructured":"Hofmeyr, S.A. and Forrest, S. (1999), \u201cImmunity by design: an artificial immune system\u201d, Proceedings of the Genetic and Evolutionary Computation Conference (GECCO), Morgan-Kaufmann, San Francisco, CA, pp. 1289-1296."},{"key":"key2022020820062388600_b21","unstructured":"Ishiguro, A. , Ichikawa, S. and Uchikawa, Y. (1994), \u201cA gait acquisition of six-legged robot using immune networks\u201d, Proceedings of International Conference on Intelligent Robotics and Systems (IROS'94), Munich, Germany, Vol. 2, pp. 1034-1041."},{"key":"key2022020820062388600_b23","doi-asserted-by":"crossref","unstructured":"Kephart, J. (1994), \u201cA biologically inspired immune system for computers\u201d, Proceedings of the Fourth International Workshop on Synthesis and Simulation of Living Systems, Artificial Life IV, pp. 130-139.","DOI":"10.7551\/mitpress\/1428.003.0017"},{"key":"key2022020820062388600_b22","doi-asserted-by":"crossref","unstructured":"Kim, J. , Bentley, P.J. , Aickeli, U. , Greensmith, J. , Tedesco, G. and Twycross, J. (2007), \u201cImmune system approaches to intrusion detection\u201d, Journal of Natural Computing, Vol. 6, pp. 413-466.","DOI":"10.1007\/s11047-006-9026-4"},{"key":"key2022020820062388600_b24","unstructured":"Le Boudec, J. and Sarafijanovic, S. (2003), \u201cAn artificial immune system approach to misbehavior detection in mobile ad-hoc networks\u201d, Technical Report IC\/2003\/59, Ecole Polytechnique Federale de Lausanne, Lausanne."},{"key":"key2022020820062388600_b25","doi-asserted-by":"crossref","unstructured":"Maruyama, Y. and Yamanishi, K. (2004), \u201cDynamic model selection with its applications to computer security\u201d, IEEE Conference Information Theory Workshop, pp. 82-87.","DOI":"10.1109\/ITW.2004.1405279"},{"key":"key2022020820062388600_b26","doi-asserted-by":"crossref","unstructured":"Matzinger, P. (1994), \u201cTolerance, danger, and the extended family\u201d, Annual Review of Immunology, Vol. 12, pp. 991-1045.","DOI":"10.1146\/annurev.iy.12.040194.005015"},{"key":"key2022020820062388600_b27","doi-asserted-by":"crossref","unstructured":"Matzinger, P. (1998), \u201cAn innate sense of danger\u201d, Seminars in Immunology, Vol. 10, pp. 399-415.","DOI":"10.1006\/smim.1998.0143"},{"key":"key2022020820062388600_b28","doi-asserted-by":"crossref","unstructured":"Matzinger, P. (2002), \u201cThe danger model: a renewed sense of self\u201d, Science, Vol. 296, pp. 301-304.","DOI":"10.1126\/science.1071059"},{"key":"key2022020820062388600_b29","doi-asserted-by":"crossref","unstructured":"Mehdi, M. , Zair, S. , Anou, A. and Bensebti, M. (2007), \u201cA Bayesian networks in intrusion detection systems\u201d, Journal of Computer Science, Vol. 3 No. 5, pp. 259-265.","DOI":"10.3844\/jcssp.2007.259.265"},{"key":"key2022020820062388600_b30","doi-asserted-by":"crossref","unstructured":"Mosmann, T. and Livingstone, A.M. (2004), \u201cDendritic cells: the immune information management experts\u201d, Nature Immunology, Vol. 5 No. 6, pp. 564-566.","DOI":"10.1038\/ni0604-564"},{"key":"key2022020820062388600_b31","doi-asserted-by":"crossref","unstructured":"Oh, S.H. and Lee, W.S. (2003), \u201cAn anomaly intrusion detection method by clustering normal user behavior\u201d, Computers & Security, Vol. 22 No. 7, pp. 596-612.","DOI":"10.1016\/S0167-4048(03)00710-7"},{"key":"key2022020820062388600_b32","unstructured":"Onut, I. and Ghorbani, A.A. (2007), \u201cA feature classification scheme for network intrusion detection\u201d, International Journal of Network Security, Vol. 5 No. 1, pp. 1-15."},{"key":"key2022020820062388600_b33","doi-asserted-by":"crossref","unstructured":"Ou, C.-M. (2012), \u201cHost-based intrusion detection systems adapted from agent-based artificial immune systems\u201d, Neurocomputing, Vol. 88 No. 1, pp. 78-86.","DOI":"10.1016\/j.neucom.2011.07.031"},{"key":"key2022020820062388600_b35","doi-asserted-by":"crossref","unstructured":"Patcha, A. and Parka, J. (2007a), \u201cAn overview of anomaly detection techniques: existing solutions and latest technological trends\u201d, Computer Network, Vol. 51 No. 12, pp. 3448-3470.","DOI":"10.1016\/j.comnet.2007.02.001"},{"key":"key2022020820062388600_b34","doi-asserted-by":"crossref","unstructured":"Patcha, A. and Parka, J. (2007b), \u201cNetwork anomaly detection with incomplete audit data\u201d, Computer Network, Vol. 51 No. 13, pp. 3935-3955.","DOI":"10.1016\/j.comnet.2007.04.017"},{"key":"key2022020820062388600_b37","doi-asserted-by":"crossref","unstructured":"Pradeu, T. and Carosella, E.D. (2006), \u201cThe self model and the conception of biological identity in immunology\u201d, Biology and Philosophy, Vol. 21 No. 2, pp. 235-252.","DOI":"10.1007\/s10539-005-8621-6"},{"key":"key2022020820062388600_b36","unstructured":"Rimiru, R.M. , Guanzheng, T. and Njuki, S.N. (2011), \u201cTowards automated intrusion response: a PAMP-based approach\u201d, International Journal of Artificial Intelligence and Expert Systems (IJAE), Vol. 2 No. 2, pp. 23-35."},{"key":"key2022020820062388600_b38","doi-asserted-by":"crossref","unstructured":"Sobh, T.S. (2006), \u201cWired and wireless intrusion detection system: classifications, good characteristics and state-of-the-art\u201d, Computer Standards & Interfaces, Vol. 28 No. 6, pp. 670-694.","DOI":"10.1016\/j.csi.2005.07.002"},{"key":"key2022020820062388600_b39","doi-asserted-by":"crossref","unstructured":"Somayaji, A. , Hofmeyr, S. and Forrest, S. (1997), \u201cPrinciples of a computer immune system\u201d, Proceeding of New Security Workshop, Langdale, Cumbria, pp. 75-82.","DOI":"10.1145\/283699.283742"},{"key":"key2022020820062388600_b40","unstructured":"Twycross, J. (2007), \u201cIntegrated innate and adaptive artificial immune systems applied to process anomaly detection\u201d, PhD thesis, January."},{"key":"key2022020820062388600_b41","doi-asserted-by":"crossref","unstructured":"Twycross, J. and Aickelin, U. (2006), \u201cLibtissue \u2013 implementing innate immunity\u201d, IEEE Congress on Evolutionary Computation (CEC 2006), 16-21 July.","DOI":"10.2139\/ssrn.2831992"},{"key":"key2022020820062388600_b42","unstructured":"UNM (2008), Computer Systems Project, 24 October, University of New Mexico, available at: www.cs.unm.edu\/immsec\/systemcalls.htm."},{"key":"key2022020820062388600_b43","doi-asserted-by":"crossref","unstructured":"Wu, S.X. and Banzhaf, W. (2010), \u201cThe use of computational intelligence in intrusion detection systems: a review\u201d, Applied Soft Computing, Vol. 10, pp. 1-35.","DOI":"10.1016\/j.asoc.2009.06.019"},{"key":"key2022020820062388600_b44","doi-asserted-by":"crossref","unstructured":"Xu, X. (2010), \u201cSequential anomaly detection based on temporal-difference learning: principles, models and case studies\u201d, Applied Soft Computing, Vol. 10, pp. 859-867.","DOI":"10.1016\/j.asoc.2009.10.003"},{"key":"key2022020820062388600_b47","unstructured":"Zeng, J. and Guo, D. (2009), \u201cAgent-based intrusion detection for network-based application\u201d, International Journal of Network Security, Vol. 8 No. 3, pp. 201-210."},{"key":"key2022020820062388600_b46","doi-asserted-by":"crossref","unstructured":"Zhang, Y. , Luo, W. , Zhang, Z. , Li, B. and Wang, X. (2008), \u201cA hardware\/software partitioning algorithm based on artificial immune principles\u201d, Applied Soft Computing, Vol. 8 No. 2008, pp. 383-391.","DOI":"10.1016\/j.asoc.2007.03.003"},{"key":"key2022020820062388600_b45","doi-asserted-by":"crossref","unstructured":"Zhang, Z. (2007), \u201cImmune optimization algorithm for constrained nonlinear multiobjective optimization problems\u201d, Applied Soft Computing, Vol. 7 No. 3, pp. 840-857.","DOI":"10.1016\/j.asoc.2006.02.008"},{"key":"key2022020820062388600_b48","doi-asserted-by":"crossref","unstructured":"Zhong, Y. , Zhang, L. , Huang, B. and Li, P. (2006), \u201cAn unsupervised artificial immune classifier for multi\/hyperspectral remote sensing imagery\u201d, IEEE Transactions on Geoscience and Remote Sensing, Vol. 44 2 February, pp. 420-431.","DOI":"10.1109\/TGRS.2005.861548"}],"container-title":["Information Management &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.emeraldinsight.com\/doi\/full-xml\/10.1108\/IMCS-11-2012-0063","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMCS-11-2012-0063\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMCS-11-2012-0063\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T21:50:50Z","timestamp":1753393850000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/21\/4\/288-314\/185549"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013,10,7]]},"references-count":48,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2013,10,7]]}},"alternative-id":["10.1108\/IMCS-11-2012-0063"],"URL":"https:\/\/doi.org\/10.1108\/imcs-11-2012-0063","relation":{},"ISSN":["0968-5227"],"issn-type":[{"value":"0968-5227","type":"print"}],"subject":[],"published":{"date-parts":[[2013,10,7]]}}}