Visible to the public Information Theory Based Evaluation Method For Wireless IDS: Status, Open Problem And Future Trends

TitleInformation Theory Based Evaluation Method For Wireless IDS: Status, Open Problem And Future Trends
Publication TypeConference Paper
Year of Publication2022
AuthorsHashim, Noor Hassanin, Sadkhan, Sattar B.
Conference Name2022 5th International Conference on Engineering Technology and its Applications (IICETA)
KeywordsCollaboration, composability, compositionality, Entropy, Human Behavior, human factors, information theoretic security, Information theory, Intrusion detection, Market research, Measurement, Metrics, Network security, policy-based governance, pubcrawl, resilience, Resiliency, Scalability, Solids, Uncertainty, Wireless communication, Wireless sensor networks
AbstractFrom an information-theoretic standpoint, the intrusion detection process can be examined. Given the IDS output(alarm data), we should have less uncertainty regarding the input (event data). We propose the Capability of Intrusion Detection (CID) measure, which is simply the ratio of mutual information between IDS input and output, and the input of entropy. CID has the desirable properties of (1) naturally accounting for all important aspects of detection capability, such as true positive rate, false positive rate, positive predictive value, negative predictive value, and base rate, (2) objectively providing an intrinsic measure of intrusion detection capability, and (3) being sensitive to IDS operation parameters. When finetuning an IDS, we believe that CID is the best performance metric to use. In terms of the IDS' inherent ability to classify input data, the so obtained operation point is the best that it can achieve.
DOI10.1109/IICETA54559.2022.9888510
Citation Keyhashim_information_2022