Networks are more and more subject to various kinds of complex security attacks. Existing security system responses have reached their limits in detecting and defending against various network attacks because current attacks are decentralized, automated and intelligent and these systems are passive in response to network attack in that they are limited to being local; and there is no automated, network wide response against detected attacks. Some drawbacks of existing systems reveal the necessity of designing a new generation of systems adapted to dynamical environment. In order to deal with these requirements, active networks approach provides interesting characteristics; it is a novel approach that gives networks and services flexibility and spontaneity. With an active network in place, we can build a more active and dynamic attack response by pushing the countermeasures near the source of attack. This paper describes this approach.

D. Raz, Y. Shavitt, “Active networks for efficient distributed network management”, IEEE Commun. Mag.38 2000 138–143.

D.Tennehouse. J.Smith. .Sincoskie. D.Wetherrall. G.Minden. “A survey of Active Network research”. In IEEE communications Magasine.35.n 1pp.80.86. January 1997.

D. Wetherrall, “ANTS: A tool kit for Building and Dynamically Deploying Networks Protocols”, In IEEE openarch 98, San Francisco April 1998

D. Decasper, B. Platttner,”DAN: Distributed code caching for Active networks”, Proc. IEEE INFOCOM ’98, San Francisco, CA 29 March-2 April 1998.

K. Calvert, S. Bhattacharjee, E.W Zegura, J.Sterbenz,“Directions in active networks“, In IEEE communications.1998.