Skip to main content
SpringerLink
Log in

Performance Analysis of Wireless Intrusion Detection Systems

  • Conference paper
Internet and Distributed Computing Systems (IDCS 2012)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 7646))

Included in the following conference series:

Abstract

Wireless Intrusion Detection System (WIDS) is a pivotal element in wireless network security. WIDS monitors the radio spectrum and system activities to detect intrusive events, and then alerts the complementary prevention part to combat the intrusions. Selecting a reliable WIDS system depends significantly on its performance evaluation. Many different attributes judge the WIDS performance such as effectiveness, efficiency, immunity, interoperability, etc. We introduce in this paper a novel methodology which consists of sequential tasks that cover all necessary dimensions for a credible evaluation of WIDSs performance. We also introduce a new evaluation metric E ID(intrusion detection effectiveness) for evaluating the WIDS effectiveness that is considered the basic factor in evaluating the WIDS performance. Our developed metric E ID manipulates the drawbacks of the previously proposed metrics. We follow our methodology and conduct experimental evaluation tests of two popular WIDSs (Kismet and AirSnare), to demonstrate the utility of E ID.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 49.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Axelsson, S.: The Base-Rate Fallacy and its Implications for the Difficulty of Intrusion Detection. In: Proceedings of the 6th ACM Conference on Computer and Communications Security (CCS 1999), pp. 1–7 (November 1999)

    Google Scholar 

  2. Gaffney, J.E., Ulvila, J.W.: Evaluation of intrusion detectors: A decision theory approach. In: Proceedings of the IEEE Symposium on Security and Privacy (S&P 2001), Oakland, CA, USA, pp. 50–61 (2001)

    Google Scholar 

  3. Gu, G., Fogla, P., Dagon, D., Lee, W., Skoric, B.: Measuring Intrusion Detection Capability: An Information-Theoretic Approach. In: Proceedings of ACM Symposium on Information, Computer and Communications Security (ASIACCS 2006), Taiwan (2006)

    Google Scholar 

  4. Stolfo, S., Fan, W., Lee, W., Prodromidis, A., Chan, P.: Cost-based modeling for fraud and intrusion detection: Results from the JAM project. In: Proceedings of DARPA Information Survivability Conference and Exposition (DISCEX 2000), pp. 130–144 (2000)

    Google Scholar 

  5. Puketza, N., Zhang, K., Chung, M., Mukherjee, B., Olsson, R.A.: A Methodology for Testing Intrusion Detection Systems. IEEE Transactions on Software Engineering 22(10), 719–729 (1996)

    Article  Google Scholar 

  6. Puketza, N., Chung, M., Olsson, R.A., Mukherjee, B.: A Software Platform for Testing Intrusion Detection Systems. Journal of IEEE Software 14(5), 43–51 (1997)

    Article  Google Scholar 

  7. Debar, H., Dacier, M., Wespi, A., Lampart, S.: An Experimentation Workbench for Intrusion Detection Systems. Research Report RZ 2998, IBM Zurich Research Laboratory, Switzerland (1998)

    Google Scholar 

  8. Lippmann, R., Fried, D., Graf, I., Haines, J., Kendall, K., McClung, D., Weber, D., Webster, S., Wyschogrod, D., Cunningham, R., Zissman, M.: Evaluating Intrusion Detection Systems: The 1998 DARPA Off-line Intrusion Detection Evaluation. In: Proceedings of the DARPA Information Survivability Conference and Exposition (DISCEX 2000), Los Alamitos, CA, USA, pp. 12–26 (2000)

    Google Scholar 

  9. Lippmann, R., Haines, J.W., Fried, D., Korba, J., Das, K.: Analysis and Results of the 1999 DARPA Off-Line Intrusion Detection Evaluation. In: Debar, H., Mé, L., Wu, S.F. (eds.) RAID 2000. LNCS, vol. 1907, pp. 162–182. Springer, Heidelberg (2000)

    Chapter  Google Scholar 

  10. McHugh, J.: Testing Intrusion Detection Systems: A Critique of the 1998 and 1999 DARPA Intrusion Detection System Evaluations as Performed by Lincoln Laboratory. ACM Transactions on Information and System Security 3(4), 262–294 (2000)

    Article  Google Scholar 

  11. Cardenas, A.A., Baras, J.S., Seamon, K.: A Framework for the Evaluation of Intrusion Detection Systems. In: Proceedings of IEEE Symposium on Security and Privacy (S&P 2006), pp. 63–77 (2006)

    Google Scholar 

  12. Wilkerson, J., Skeen, M., Patrick, D., Hodges, R., Schimizzi, R., Vora, S., Zhiping, F., Gard, K., Steer, M.: Acoustic-RF anechoic chamber construction and evaluation. In: Proceedings of IEEE Radio and Wireless Symposium, pp. 331–334 (2008)

    Google Scholar 

  13. Di-Pietro, R., Mancini, L.V.: Intrusion Detection Systems. Advances in Information Security Series, vol. 38. Springer, Heidelberg (2008)

    Google Scholar 

  14. Brutch, P., Ko, C.: Challenges in Intrusion Detection for Wireless Ad-Hoc Networks. In: Proceedings of the 2003 Symposium on Applications and the Internet Workshops, Orlando, Florida, USA, pp. 368–373 (2003)

    Google Scholar 

  15. Singh, J., Kaur, L., Gupta, S.: Analysis of Intrusion Detection Tools for Wireless Local Area Networks. International Journal of Computer Science and Network Security (IJCSNS) 9, 168–177 (2009)

    Google Scholar 

  16. Debar, H., Dacier, M., Wespi, A.: Towards a Taxonomy of Intrusion Detection Systems. International Journal of Computer and Telecommunications Networking 31, 805–822 (1999)

    Google Scholar 

  17. Sobh, T.: Wired and Wireless Intrusion Detection System: Classifications, Good Characteristics and State-of-The-Art. Computer Standards and Interfaces 28, 670–694 (2006)

    Article  Google Scholar 

  18. Nasr, K., Abou El Kalam, A., Fraboul, C.: A Holistic Methodology for Evaluating Wireless Intrusion Detection Systems. In: Proceedings of International Conference on Network and System Security (NSS 2011), Milan, Italy, pp. 9–16 (September 2011)

    Google Scholar 

  19. Airodump-ng, http://www.aircrack-ng.org/doku.php?id=airodump-ng

  20. Aireplay-ng, http://www.aircrack-ng.org/doku.php?id=aireplay-ng

  21. MGEN, http://cs.itd.nrl.navy.mil/work/mgen/

  22. Rude/Grude, http://rude.sourceforge.net/

  23. Metasploit, http://www.metasploit.com/

  24. CANVAS, http://www.immunitysec.com/products-canvas.shtml

  25. Nasr, K., Abou El Kalam, A., Fraboul, C.: An IDS Evaluation-Centric Taxonomy of Wireless Security Attacks. In: Wyld, D.C., Wozniak, M., Chaki, N., Meghanathan, N., Nagamalai, D. (eds.) CNSA 2011. CCIS, vol. 196, pp. 402–413. Springer, Heidelberg (2011)

    Chapter  Google Scholar 

  26. Jain, R.: The Art of Computer Systems Performance Analysis: Techniques for Experimental Design, Measurement, Simulation and Modeling, 1st edn. John Wiley & Sons (1991)

    Google Scholar 

  27. Kismet, http://www.kismetwireless.net/

  28. AirSnare, http://home.comcast.net/~jay.deboer/airsnare/

Download references

Author information

Authors and Affiliations

  1. INPT-ENSEEIHT, IRIT, Université de Toulouse, Toulouse, France

    Khalid Nasr & Christian Fraboul

  2. OSCARS Laboratory, UCA/ENSA of Marrakesh, Morocco

    Anas Abou-El Kalam

Authors
  1. Khalid Nasr
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Anas Abou-El Kalam
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Christian Fraboul
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. School of Information Technology, Deakin University, Melbourne Burwood Campus, 221 Burwood Highway, 3125, Burwood, VIC, Australia

    Yang Xiang

  2. Media Distribution, Telstra Corporation Limited, 21/35 Collins St, 3000, Melbourne, VIC, Australia

    Mukaddim Pathan

  3. Department of Mathematics and Computing, The University of Southern Queensland, Toowoomba, QLD, Australia

    Xiaohui Tao  & Hua Wang  & 

Rights and permissions

Reprints and permissions

Copyright information

© 2012 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Nasr, K., Kalam, A.AE., Fraboul, C. (2012). Performance Analysis of Wireless Intrusion Detection Systems. In: Xiang, Y., Pathan, M., Tao, X., Wang, H. (eds) Internet and Distributed Computing Systems. IDCS 2012. Lecture Notes in Computer Science, vol 7646. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-34883-9_19

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-34883-9_19

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-34882-2

  • Online ISBN: 978-3-642-34883-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation