A framework for the evaluation of intrusion detection systems
作者: A.A. Cardenas , J.S. Baras , K. Seamon
DOI: 10.1109/SP.2006.2
关键词:
摘要: Classification accuracy in intrusion detection systems (IDSs) deals with such fundamental problems as how to compare two or more IDSs, evaluate the performance of an IDS, and determine best configuration IDS. In effort analyze solve these related problems, evaluation metrics Bayesian rate, expected cost, sensitivity capability have been introduced. this paper, we study advantages disadvantages each them a unified framework. Additionally, introduce operating characteristic (IDOC) curves new IDS tradeoff which combines intuitive way variables that are relevant problem. We also formal framework for reasoning about proposed against adaptive adversaries. provide simulations experimental results illustrate benefits
acm.org 
sci-hub.se 参考文章(35)
Kymie M. C. Tan, Kevin S. Killourhy, Roy A. Maxion, Undermining an anomaly-based intrusion detection system using common exploits recent advances in intrusion detection. pp. 54- 73 ,(2002) , 10.1007/3-540-36084-0_4
Richard A. Kemmerer, Christopher Kruegel, Darren Mutz, Giovanni Vigna, William Robertson, Reverse Engineering of Network Signatures ,(2005)
David Marchette, A Statistical Method for Profiling Network Traffic ID'99 Proceedings of the 1st conference on Workshop on Intrusion Detection and Network Monitoring - Volume 1. pp. 119- 128 ,(1999)
Timothy N. Newsham, Thomas H. Ptacek, Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection ,(1998)
Yongguang Zhang, Wenke Lee, Yi-An Huang, Intrusion detection techniques for mobile wireless networks Wireless Networks. ,vol. 9, pp. 545- 556 ,(2003) , 10.1023/A:1024600519144
Vern Paxson, Christian Kreibich, Mark Handley, Network intrusion detection: evasion, traffic normalization, and end-to-end protocol semantics usenix security symposium. pp. 9- 9 ,(2001)
Eleazar Eskin, Andrew Arnold, Michael Prerau, Leonid Portnoy, Sal Stolfo, A Geometric Framework for Unsupervised Anomaly Detection Applications of Data Mining in Computer Security. pp. 77- 101 ,(2002) , 10.1007/978-1-4615-0953-0_4
E Eskin, Andrew Arnold, Michael Prerau, Leonid Portnoy, Sal Stolfo, A GEOMETRIC FRAMEWORK FOR UNSUPERVISED ANOMALY DETECTION: DETECTING INTRUSIONS IN UNLABELED DATA APPLICATIONS OF DATA MINING IN COMPUTER SECURITY. pp. 0- 0 ,(2002) , 10.7916/D8D50TQT
Wenke Lee, Salvatore J. Stolfo, Data mining approaches for intrusion detection usenix security symposium. pp. 6- 6 ,(1998) , 10.21236/ADA401496
Giovanni Di Crescenzo, Abhrajit Ghosh, Rajesh Talpade, Towards a Theory of Intrusion Detection Computer Security – ESORICS 2005. pp. 267- 286 ,(2005) , 10.1007/11555827_16