Second IEEE International Information Assurance Workshop (IWIA'04) (2004)
Charlotte, North Carolina
Apr. 8, 2004 to Apr. 9, 2004
Gautam Singaraju , University of North Carolina at Charlotte
Lawrence Teo , University of North Carolina at Charlotte; Calyptix Security Corporation, Charlotte, NC
Yuliang Zheng , University of North Carolina at Charlotte; Calyptix Security Corporation, Charlotte, NC
The current Intrusion Detection System (IDS) technology is a major investment for a firm and its evaluation is desired prior to a commitment. A testbed compares different IDSs on a common platform. A major challenge in evaluating IDSs stems from the fact that they are generally tested in specific environments. A real-world environment could be different from the environment designed for a testbed. The results obtained, from such testbeds, may not be accurate and reliable. Hence, a quantitative and metrics based evaluation of IDSs is desired.<div></div> We propose Testbed for evaluating Intrusion Detection Systems (TIDeS), that allows a user to select the best IDS for a specific customized environment. A quantitative analysis is provided by TIDeS, using fuzzy logic, under varying network loads. We also propose robust metrics to evaluate an IDS. We follow up with recommendations, based on our experience, on the general practices in the field of IDSs.
Testbed, TIDeS, Intrusion Detection, Environment Profile, Evaluation Framework, Scalability, Fuzzy Logic
L. Teo, Y. Zheng and G. Singaraju, "A Testbed for Quantitative Assessment of Intrusion Detection Systems using Fuzzy Logic," Innovative Architecture for Future Generation High-Performance Processors and Systems (IWIA'04)(IWIA), Maui, Hawaii, 2004, pp. 79.