A DATA COLLECTION MODEL FOR INTRUSION DETECTION SYSTEM BASED ON SIMPLE RANDOM SAMPLING
Data collection mechanism is the crucial factor that affects the performance of intrusion detection system (IDS). Simple random sampling technique of statistics is introduced to the procedure of data collection of IDS, and a new data collection model for IDS is provided. Formulas used to calculate the sample size of packets under both normal conditions and special conditions where there is a small amount of network traffic with attack signature are presented. Experimental results show the model is able to improve the efficiency of data collection and strengthen the processing performance of IDS with little devaluation of detection precision of IDS.
KeywordsSimple Random Sampling Intrusion Detection System Population Unit Attack Signature Detection Ratio
Unable to display preview. Download preview PDF.
- 1.D.E. Denning (1987), An intrusion-detection model, IEEE Transactions on Software Engineering, SE-13, pp. 222–232.Google Scholar
- 3.M. Kodialam and T.V. Lakshman (2003), Detecting network intrusions via sampling: A game theoretic approach, IEEE INFOCOM 2003—The Conference on Computer Communications, pp. 1880–1889.Google Scholar