English

On the model-checking-based IDS

Cryptography and Security 2018-06-26 v1

Abstract

How to identify the comprehensive comparable performance of various Intrusion Detection (ID) algorithms which are based on the Model Checking (MC) techniques? To address this open issue, we conduct some tests for the model-checking-based intrusion detection systems (IDS) algorithms. At first, Linear Temporal Logic (LTL), Interval Temporal Logic (ITL) and Real-time Attack Signature Logic (RASL) are employed respectively to establish formula models for twenty-four types of attacks. And then, a standard intrusion set, called Intrusion Set for Intrusion Detection based on Model Checking (ISIDMC) is constructed. On the basis of it, detection abilities and efficiency of the intrusion detection algorithms based on model checking the three logics mentioned above are compared exhaustively

Keywords

Cite

@article{arxiv.1806.09337,
  title  = {On the model-checking-based IDS},
  author = {Weijun Zhu},
  journal= {arXiv preprint arXiv:1806.09337},
  year   = {2018}
}

Comments

34 pages, 18 figures, 26 tables

R2 v1 2026-06-23T02:40:20.456Z