Testing Intrusion detection systems-Reference-Cited by-同舟云学术

Testing Intrusion detection systems

Published:2000-11 Issue:4 Volume:3 Page:262-294
ISSN:1094-9224
Container-title:ACM Transactions on Information and System Security
language:en
Short-container-title:ACM Trans. Inf. Syst. Secur.

Author:

McHugh John¹

Affiliation:

1. Carnegie Mellon University

Abstract

In 1998 and again in 1999, the Lincoln Laboratory of MIT conducted a comparative evaluation of intrusion detection systems (IDSs) developed under DARPA funding. While this evaluation represents a significant and monumental undertaking, there are a number of issues associated with its design and execution that remain unsettled. Some methodologies used in the evaluation are questionable and may have biased its results. One problem is that the evaluators have published relatively little concerning some of the more critical aspects of their work, such as validation of their test data. The appropriateness of the evaluation techniques used needs further investigation. The purpose of this article is to attempt to identify the shortcomings of the Lincoln Lab effort in the hope that future efforts of this kind will be placed on a sounder footing. Some of the problems that the article points out might well be resolved if the evaluators were to publish a detailed description of their procedures and the rationale that led to their adoption, but other problems would clearly remain./par>

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/382912.382923

Reference39 articles.

1. ALLEN J. CHRISTIE A. FITHEN W. MCHUGH J. PICKEL J. AND STONER E. 2000. State of the practice of intrusion detection technologies. CMU/SEI-99-TR-028 CMU/SEI. Software Engineering Institute Carnegie Mellon University Pittsburgh PA.]] ALLEN J. CHRISTIE A. FITHEN W. MCHUGH J. PICKEL J. AND STONER E. 2000. State of the practice of intrusion detection technologies. CMU/SEI-99-TR-028 CMU/SEI. Software Engineering Institute Carnegie Mellon University Pittsburgh PA.]]

2. AXELSSON S. 2000. Intrusion-detection systems: A taxonomy and survey. 99-15 (March).]] AXELSSON S. 2000. Intrusion-detection systems: A taxonomy and survey. 99-15 (March).]]

3. AXELSSON S. 2000. A preliminary attempt to apply detection and estimation theory to intrusion detection. 00--4 (March).]] AXELSSON S. 2000. A preliminary attempt to apply detection and estimation theory to intrusion detection. 00--4 (March).]]

Cited by 696 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Benchmarking the benchmark — Comparing synthetic and real-world Network IDS datasets;Journal of Information Security and Applications;2024-02

2. A hybrid framework using explainable AI (XAI) in cyber-risk management for defence and recovery against phishing attacks;Decision Support Systems;2024-02

3. Data Sharing and Use in Cybersecurity Research;Data Science Journal;2024-01-19

4. Methodology for the Detection of Contaminated Training Datasets for Machine Learning-Based Network Intrusion-Detection Systems;Sensors;2024-01-12

5. A voting gray wolf optimizer-based ensemble learning models for intrusion detection in the Internet of Things;International Journal of Information Security;2024-01-09