Trends , problems and misconceptions on testing Network Intrusion Detection Systems effectiveness .

  • Orfila A
  • Tapiador J
  • Ribagorda A
  • 8

    Readers

    Mendeley users who have this article in their library.
  • 0

    Citations

    Citations of this article.

Abstract

Network Intrusion Detection Systems (NIDS) are hardware or software systems that are used to identify and respond to intrusions in computer networks. An intrusion is a deliberate or accidental unauthorized access to or activity against any of the elements of the network. Evaluation of how effective different intrusion detection technologies are becomes mandatory, in order to know which is the one that better fits in a particular scenario. Nevertheless this is not an easy task. This chapter reviews the main problems regarding testing effectiveness: the absence of standard test methodologies and metrics, the drawbacks of current datasets, the different requirements for testing different tech- nologies, etc. These conditions make evaluation difficult not only for the industry but also for researchers. Scientific proposals are often naively compared. We focus on providing evidence of this situation by means of supporting examples. Some guidelines for the future are finally proposed.

Author-supplied keywords

  • effectiveness evaluation
  • network intrusion detection

Get free article suggestions today

Mendeley saves you time finding and organizing research

Sign up here
Already have an account ?Sign in

Find this document

  • ISBN: 9781606927816
  • SCOPUS: 2-s2.0-85049255872
  • PUI: 255238387
  • SGR: 84891999479

Authors

  • Agustin Orfila

  • Juan M E Tapiador

  • Arturo Ribagorda

Cite this document

Choose a citation style from the tabs below

Save time finding and organizing research with Mendeley

Sign up for free