Communications and Networking. 12th International Conference, ChinaCom 2017, Xi’an, China, October 10-12, 2017, Proceedings, Part II

Research Article

Environment-Related Information Security Evaluation for Intrusion Detection Systems

  • @INPROCEEDINGS{10.1007/978-3-319-78139-6_38,
        author={Ran Cheng and Yueming Lu and Jiefu Gan},
        title={Environment-Related Information Security Evaluation for Intrusion Detection Systems},
        proceedings={Communications and Networking. 12th International Conference, ChinaCom 2017, Xi’an, China, October 10-12, 2017, Proceedings, Part II},
        proceedings_a={CHINACOM},
        year={2018},
        month={4},
        keywords={Intrusion detection system Precision Recall Background traffic},
        doi={10.1007/978-3-319-78139-6_38}
    }
    
  • Ran Cheng
    Yueming Lu
    Jiefu Gan
    Year: 2018
    Environment-Related Information Security Evaluation for Intrusion Detection Systems
    CHINACOM
    Springer
    DOI: 10.1007/978-3-319-78139-6_38
Ran Cheng1,*, Yueming Lu1,*, Jiefu Gan2,*
  • 1: Beijing University of Posts and Communications, Key Laboratory of Trustworthy Distributed Computing and Service (BUPT), Ministry of Education
  • 2: China Information Security Certification Center
*Contact email: hscrws@bupt.edu.cn, ymlu@bupt.edu.cn, gjfsecure@163.com

Abstract

The features of actively detection of intrusion detection systems (IDSs) are crucial in cyberspace security evaluation. Most of existing evaluation models are insufficient for selecting proper IDS in varying situations since these methods only base on detection rate and false alarm ratio. The paper proposes an environment-related information security evaluation model for IDSs, and applies the model in a practical IDS evaluation process. Compared to existing ones, the proposed model considers two more factors: background traffic and workload, and thus can achieve a more objective and comprehensive evaluation result for IDSs.