Sciweavers

TRIDENTCOM
2008
IEEE

A case study in testing a network security algorithm

14 years 6 months ago
A case study in testing a network security algorithm
Several difficulties arise when testing network security algorithms. First, using network data captured at a router does not guarantee that any instances of the security event of interest will be captured. Similarly, if the event of interest is not detected, this does not guarantee that it does not exist in the captured data. Further, such network data is often not publicly available, making comparisons with other detectors difficult. On the other extreme, purely simulated data can be made publicly available and can provide guarantees that the event of interest exists in the data set. However, simulated data often has unintended artifacts and may also incorporate the biases of the particular simulator. In this paper I describe an emulation approach that takes advantage of captured data while using the DETER network to generate realistic traffic for the event of interest. The problem domain was described in terms of seven variables, where the DETER network provided a flexible mediu...
Carrie Gates
Added 01 Jun 2010
Updated 01 Jun 2010
Type Conference
Year 2008
Where TRIDENTCOM
Authors Carrie Gates
Comments (0)