Signature-based detection is the most widely used technique for Intrusion Detection Systems (IDS). One of the major challenges of signature-based IDS is how to keep up with a large volume of incoming traffic when each packet needs to be compared with every signature in the database. When an IDS cannot keep up with the traffic flood, all it can do is to drop packets, therefore, may miss potential attacks. In this thesis, a new model is proposed so as to avoid traffic flooding. The proposed model is called dynamic multi-layer signature-based IDS using mobile agents, this model has the...