Title :
A testbed for quantitative assessment of intrusion detection systems using fuzzy logic
Author :
Singaraju, Gautam ; Teo, Lawrence ; Zheng, Yuliang
Author_Institution :
Lab. of Inf. Integration, Security & Privacy, North Carolina Univ., Charlotte, NC, USA
Abstract :
The current intrusion detection system (IDS) technology is a major investment for a firm and its evaluation is desired prior to a commitment. A testbed compares different IDSs on a common platform. A major challenge in evaluating IDSs stems from the fact that they are generally tested in specific environments. A real-world environment could be different from the environment designed for a testbed. The results obtained, from such testbeds, may not be accurate and reliable. Hence, a quantitative and metrics based evaluation of IDSs is desired. We propose testbed for evaluating intrusion detection systems (TIDeS), that allows a user to select the best IDS for a specific customized environment. A quantitative analysis is provided by TIDeS, using fuzzy logic, under varying network loads. We also propose robust metrics to evaluate an IDS. We follow up with recommendations, based on our experience, on the general practices in the field of IDSs.
Keywords :
computer networks; fuzzy logic; message authentication; telecommunication traffic; computer network security management; fuzzy logic; intrusion detection system; Fuzzy logic; Information security; Intrusion detection; Logic testing; NIST; Protocols; Robustness; System testing; Telecommunication traffic; Tides;
Conference_Titel :
Information Assurance Workshop, 2004. Proceedings. Second IEEE International
Print_ISBN :
0-7695-2117-7
DOI :
10.1109/IWIA.2004.1288040
