EVALUATION OF THE INTRUSION DETECTION CAPABILITIES AND PERFORMANCE OF A SECURITY OPERATION CENTER

Abdoul Karim Ganame, Julien Bourgeois, Renaud Bidou, Francois Spies

2006

Abstract

Detecting all kinds of intrusions efficiently requires a global view of the monitored network. We have developed a security operation center which is able to detect coordinated attacks that are not detected by traditional IDS. In this article, we present several methods used to test the accuracy and the performance of our security operation center. A real ISP network have been used as well as experiments in our lab.

Paper Citation

in Harvard Style

Karim Ganame A., Bourgeois J., Bidou R. and Spies F. (2006). EVALUATION OF THE INTRUSION DETECTION CAPABILITIES AND PERFORMANCE OF A SECURITY OPERATION CENTER . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006) ISBN 978-972-8865-63-4, pages 48-55. DOI: 10.5220/0002101900480055

in Bibtex Style

@conference{secrypt06,
author={Abdoul Karim Ganame and Julien Bourgeois and Renaud Bidou and Francois Spies},
title={EVALUATION OF THE INTRUSION DETECTION CAPABILITIES AND PERFORMANCE OF A SECURITY OPERATION CENTER},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)},
year={2006},
pages={48-55},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002101900480055},
isbn={978-972-8865-63-4},
}

in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)
TI - EVALUATION OF THE INTRUSION DETECTION CAPABILITIES AND PERFORMANCE OF A SECURITY OPERATION CENTER
SN - 978-972-8865-63-4
AU - Karim Ganame A.
AU - Bourgeois J.
AU - Bidou R.
AU - Spies F.
PY - 2006
SP - 48
EP - 55
DO - 10.5220/0002101900480055