| 一种NIDS检测能力的测评方法 |
| |
| 引用本文: | 陈志文,姜建国,王开云. 一种NIDS检测能力的测评方法[J]. 网络安全技术与应用, 2005, 0(5): 59-60 |
| |
| 作者姓名: | 陈志文 姜建国 王开云 |
| |
| 作者单位: | 中国工程物理研究院,计算机应用研究所,四川,621900 |
| |
| 基金项目: | 中国工程物理研究院面上基金资助项目(20030661)资注 |
| |
| 摘 要: | 由于网络入侵检测系统(NIDS)固有的特点,很难从各个NIDS产品厂家宣传的检测"率来评价不同NIDS的检测能力。本文先介绍了网络入侵检测系统检测能力的测评指标,然后建立了一个采用模拟数据的简单的测评方案,并简要介绍了模拟数据的获取方法。该方案简单,易于实施,通过该方案测评的NIDS的检测能力具有可比性、公正性、客观性。
|
| 关 键 词: | 入侵检测 误报 检测率 规范化 |
A Scheme of Testing Effectiveness of NIDS |
| |
| Chen Zhiwen,Jiang Jianguo,Wang Kaiyun. A Scheme of Testing Effectiveness of NIDS[J]. Net Security Technologies and Application, 2005, 0(5): 59-60 |
| |
| Authors: | Chen Zhiwen Jiang Jianguo Wang Kaiyun |
| |
| Affiliation: | Chen Zhiwen,Jiang Jianguo,Wang Kaiyun Institute of Computer Application,Chinese Academy of Engineering Physics,Sichuan 621900 |
| |
| Abstract: | As a result of the implicit characteristic of Network-based Intrusion Detection (NIDS),it is very difficult to compare the ability of detection between one NIDS with another. People compare it usually based on the probability of detection, which is often the claims of the vendors.A scheme try to solve this issue is designed in this paper The scheme is based on simulation data set,and it is simple and easy to be implemented. |
| |
| Keywords: | intrusion detection false alarms probability of detection standardization |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
