Abstract
Models and modelling are effective approaches to describe
events or activities of systems or environment. An error
or design flaw in the models can cause failures in
applications utilizing these models. Therefore, an
effective testing and validation approach is required for
identifying possible errors and misunderstandings. This
paper proposes a process for testing and validating
intrusion models used in network intrusion detection. The
process can be integrated as part of the intrusion model
development process with proper tool support. This will
help to identify possible errors in the intrusion model
as early as possible. The contribution is to apply
well-known aspects from software testing and implement
them in the intrusion model testing and validation. The
experimental implementation of the proposed process will
concentrate on testing intrusion models focusing on
detecting port scan attacks. This experiment will
indicate that when the testing and validation is part of
the intrusion model development process, the intrusion
model developer receives immediate feedback and can
quickly refine the intrusion model. This increases the
confidence of the intrusion model and errors and design
misunderstandings are located effectively.
Original language | English |
---|---|
Title of host publication | Proceedings |
Subtitle of host publication | International Conference on Computer & Information Science, ICCIS 2012 |
Publisher | IEEE Institute of Electrical and Electronic Engineers |
Pages | 723-728 |
ISBN (Print) | 978-1-4673-1937-9, 978-1-4673-1938-6 |
Publication status | Published - 2012 |
MoE publication type | Not Eligible |
Event | International Conference on Computer & Information Science
ICCIS 2012 - Kuala Lumpur, Malaysia Duration: 12 Jun 2012 → 14 Jun 2012 |
Conference
Conference | International Conference on Computer & Information Science ICCIS 2012 |
---|---|
Abbreviated title | ICCIS 2012 |
Country/Territory | Malaysia |
City | Kuala Lumpur |
Period | 12/06/12 → 14/06/12 |
Keywords
- intrusion model
- testing
- validation
- network intrusion detection