Archivo Abierto Institucional de la Universidad Carlos III de Madrid >
Departamento de Informática >
Grupo de Seguridad de las Tecnologías de la Información y de las Comunicaciones >
DI - SETI - Capítulos de Monografías >
Please use this identifier to cite or link to this item:
|Files in This Item:
There are no files associated with this item.
|Title: ||Trends, problems and misconceptions on testing Network Intrusion Detection Systems effectiveness|
|Author(s): ||Orfila, Agustín|
Estévez-Tapiador, Juan M.
|Publisher: ||Nova Publishers|
|Issued date: ||2009|
|Citation: ||Computer Security: Intrusion, Detection and Prevention. Nova Publishers, 2009, pp. 51-62|
|Abstract: ||Network Intrusion Detection Systems (NIDS) are hardware or software systems that are used to identify and respond to intrusions in computer networks. An intrusion is a deliberate or accidental unauthorized access to or activity against any of the elements of the network. Evaluation of how effective different intrusion detection technologies are becomes mandatory, in order to know which is the one that better fits in a particular scenario. Nevertheless this is not an easy task. This chapter reviews the main problems regarding testing effectiveness: the absence of standard test methodologies and metrics, the drawbacks of current datasets, the different requirements for testing different technologies, etc. These conditions make evaluation difficult not only for the industry but also for researchers. Scientific proposals are often näively compared. We focus on providing evidence of this situation by means of supporting examples. Some guidelines for the future are finally proposed.|
|Keywords: ||effectiveness evaluation|
network intrusion detection
|Rights: ||© Nova Science Publishers|
|Appears in Collections:||DI - SETI - Capítulos de Monografías|
Items in E-Archivo are protected by copyright, with all rights reserved, unless otherwise indicated.