Technique of experimental evaluation of cloud environment attacks detection accuracy

• Main Authors: Sergey A. Klimachev, Natalia A. Tishina
• Format: Article
• Language: English
• Published: Moscow Engineering Physics Institute 2018-05-01
• Series: Bezopasnostʹ Informacionnyh Tehnologij
• Subjects: efficiency evaluation, efficiency scores, IDS, cloud environment.
• Online Access: https://bit.mephi.ru/index.php/bit/article/view/1109
• ISSN: 2074-7128; 2074-7136

The article is devoted to research of efficiency evaluation of IDS used for dynamic and complex organizational and technical structure computing platform guard. The components of the platform have a set of heterogeneous parameters. Analysis of existing IDS evaluation technique revealed shortcomings in justification of quantitative metrics that describe the efficiency and reliability IDS resolving. This makes if difficult to prove IDS evaluation technique. The purpose of the study is to increase IDS evaluation objectivity. To achive the purpose it is necessary to develop the correct technique, tools, experimental stand. The article proposes the results of development and approbation of the technique of IDS efficiency evaluation and software for it. The technique is based on defining of optimal set of attack detection accuracy scores. The technique and the software allow solving problems of comparative analysis of IDS that have similar functionality. As a result of the research, a number of task have been solved, including the selection of universal quantitative metrics for attack detection accuracy evaluation, the defining of summarised attack detection accuracy evaluation metric based on defining of pareto-optimal set of scores that ensure the confidentiality, integrity and accessibility of cloud environment information and information resources,  the development of a functional model,  a functional scheme and a software for cloud environment IDS research.