Recent Advances in Network Intrusion Detection System Tuning

  title={Recent Advances in Network Intrusion Detection System Tuning},
  author={Joel Sommers and Vinod Yegneswaran and Paul Barford},
  journal={2006 40th Annual Conference on Information Sciences and Systems},
We describe a traffic generation framework for online evaluation and tuning network intrusion detection systems over a wide range of realistic conditions. The framework integrates both benign and malicious traffic, enabling generation of IP packet streams with diverse characteristics from the perspective of (i) packet content (both header and payload), (ii) packet mix (order of packets in streams) and (iii) packet volume (arrival rate of packets in streams). We begin by describing a methodology… CONTINUE READING