A Novel Metric for the Evaluation of IDSs Effectiveness

Abstract : Nowadays intrusion detection system (IDS) has a considerable attention as a crucial element in network security. The question that arises is which IDS is effective for our system? The answer should inevitably take into account the evaluation of IDSs effectiveness. Dealing with this challenge, many valuable evaluation metrics have been introduced such as receiver operating characteristic (ROC) curve, Bayesian detection rate, intrusion detection capability, intrusion detection operating characteristic, cost-based metrics, etc. The benefits and drawbacks of these metrics are discussed in this paper. We subsequently propose a novel metric called intrusion detection effectiveness (EID) that manipulates the drawbacks of the existing ones, taking into account all essential and related parameters. We demonstrate the utility of EID over the previously proposed ones, and how it realizes the measurement of the actual effectiveness rather than the relative effectiveness as followed by the existing ones. EID can be used for evaluating the wired or wireless IDSs effectiveness. Additionally, we conduct experimental evaluation of two popular wireless IDSs (WIDSs), Kismet and AirSnare, to illustrate the benefits of EID.
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.220-233, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_18〉
Liste complète des métadonnées

Littérature citée [8 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01370368
Contributeur : Hal Ifip <>
Soumis le : jeudi 22 septembre 2016 - 14:25:19
Dernière modification le : jeudi 22 septembre 2016 - 15:12:23

Fichier

978-3-642-55415-5_18_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Khalid Nasr, Anas Kalam. A Novel Metric for the Evaluation of IDSs Effectiveness. Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.220-233, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_18〉. 〈hal-01370368〉

Partager

Métriques

Consultations de la notice

113

Téléchargements de fichiers

11