IKBFU's Vestnik

2021 Issue №2

Back to the list Download an article

Determination of suitability of network intrusion de­tection rules and their mathematical evaluation

Pages
11-18

Abstract

The article deals with the problems that arise when detecting network at­tacks using intrusion detection systems in the corporate network of an enter­prise. The features of the formation of signatures of network attacks are con­sidered. The problem of coincidence of parameters of network intrusions and parameters of damaged packets is investigated. To assess the suitability of the rules for detecting network attacks and their subsequent control, a method for upgrading the component composition of intrusion detection systems has been redesigned. A method of mathematical evaluation of the suitability of the rules for detecting network attacks is considered.