Flaws and frauds in the evaluation of IDS/IPS technologies
نویسنده
چکیده
In this paper, we will briefly review the problem of IDS and IPS performance evaluation, demonstrating how flawed current approaches to evaluation are, both in academia and in the industry. We will show all the issues in current testing methodologies, as well as key reasons to distrust claimed performance rates of current IDS systems. We will also show how practical testing architectures can be created to compare systems, and how they can be used in academic and industrial evaluations.
منابع مشابه
Assessment Methodology for Anomaly-Based Intrusion Detection in Cloud Computing
Cloud computing has become an attractive target for attackers as the mainstream technologies in the cloud, such as the virtualization and multitenancy, permit multiple users to utilize the same physical resource, thereby posing the so-called problem of internal facing security. Moreover, the traditional network-based intrusion detection systems (IDSs) are ineffective to be deployed in the cloud...
متن کاملA Comparative Study of Related Technologies of Intrusion Detection & Prevention Systems
The rapid growth of computer networks has changed the prospect of network security. An easy accessibility condition causes computer networks to be vulnerable against numerous and potentially devastating threats from hackers. Up to the moment, researchers have developed Intrusion Detection Systems (IDS) capable of detecting attacks in several available environments. A boundlessness of methods fo...
متن کاملA Survey on Potential Applications of Honeypot Technology in Intrusion Detection Systems
Information security in the sense of personal and institutional has become a top priority in digitalized modern world in parallel to the new technological developments. Many methods, tools and technologies are used to provide the information security of IT systems. These are considered, encryption, authentication, firewall, and intrusion detection and prevention systems. Moreover, honeypot syst...
متن کاملEvaluation of an Intrusion Detection System for Routing Attacks in Wireless Self-organised Networks
Wireless Sensor Networks (WSNs) arebecoming increasingly popular, and very useful in militaryapplications and environmental monitoring. However,security is a major challenge for WSNs because they areusually setup in unprotected environments. Our goal in thisstudy is to simulate an Intrusion Detection System (IDS)that monitors the WSN and report intrusions accurately andeffectively. We have thus...
متن کاملIDS and IPS System in Multi-Tier Web Applications
In the age of information technology the facets of work and availability of everything on the internet services so the internet service and applications have become an inextricable part of day today life, enabling communication and the management of personal information from anywhere. To accommodate this increase in application and data complexity, web and its various services have moved to a m...
متن کامل