SyncPoint based scoring method in IDS evaluation
Scoring the true positive rate and the false positive rate is a key component in IDS evaluation.The accuracy of the scoring method affects the effectiveness of the evaluation results.There are two kinds of scoring methods existed,one considering the false positive and the other not.But both of them...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2008-01-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/74652776/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841537544641052672 |
|---|---|
| author | YANG Wang1 GONG Jian1 WU Xiong1 |
| author_facet | YANG Wang1 GONG Jian1 WU Xiong1 |
| author_sort | YANG Wang1 |
| collection | DOAJ |
| description | Scoring the true positive rate and the false positive rate is a key component in IDS evaluation.The accuracy of the scoring method affects the effectiveness of the evaluation results.There are two kinds of scoring methods existed,one considering the false positive and the other not.But both of them aren’t accurate enough and don’t scale to the traffic volume increase.The characteristics required by the evaluating window was analyzed,and a SyncPoint based scoring method utilizing the features that the IDS processes the packet in a FIFO queue way was proposed.The theoretical analy-sis and the experiment show that the SyncPoint based scoring method is better than the current methods in accuracy and the scalability. |
| format | Article |
| id | doaj-art-6603a5fb6a0e4fe7b2defff5b03a20bd |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2008-01-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-6603a5fb6a0e4fe7b2defff5b03a20bd2025-01-14T08:30:57ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2008-01-0174652776SyncPoint based scoring method in IDS evaluationYANG Wang1GONG Jian1WU Xiong1Scoring the true positive rate and the false positive rate is a key component in IDS evaluation.The accuracy of the scoring method affects the effectiveness of the evaluation results.There are two kinds of scoring methods existed,one considering the false positive and the other not.But both of them aren’t accurate enough and don’t scale to the traffic volume increase.The characteristics required by the evaluating window was analyzed,and a SyncPoint based scoring method utilizing the features that the IDS processes the packet in a FIFO queue way was proposed.The theoretical analy-sis and the experiment show that the SyncPoint based scoring method is better than the current methods in accuracy and the scalability.http://www.joconline.com.cn/zh/article/74652776/IDS evaluationscoring methodSyncPointfalse positive ratescalability |
| spellingShingle | YANG Wang1 GONG Jian1 WU Xiong1 SyncPoint based scoring method in IDS evaluation Tongxin xuebao IDS evaluation scoring method SyncPoint false positive rate scalability |
| title | SyncPoint based scoring method in IDS evaluation |
| title_full | SyncPoint based scoring method in IDS evaluation |
| title_fullStr | SyncPoint based scoring method in IDS evaluation |
| title_full_unstemmed | SyncPoint based scoring method in IDS evaluation |
| title_short | SyncPoint based scoring method in IDS evaluation |
| title_sort | syncpoint based scoring method in ids evaluation |
| topic | IDS evaluation scoring method SyncPoint false positive rate scalability |
| url | http://www.joconline.com.cn/zh/article/74652776/ |
| work_keys_str_mv | AT yangwang1 syncpointbasedscoringmethodinidsevaluation AT gongjian1 syncpointbasedscoringmethodinidsevaluation AT wuxiong1 syncpointbasedscoringmethodinidsevaluation |