论文信息 - Developing an empirical study of how qualified subjects might be selected for IT system security penetration testing

Developing an empirical study of how qualified subjects might be selected for IT system security penetration testing

This paper describes a planned program of investigation designed to determine what characteristics are signficant in predicting performance of students used as subjects in IT system penetration testing testbeds. In large part the experimental design replicates an earlier study by Jonsson et al., and extends that study to include factors describing the attacking subjects. In this way the proposed study is expected to be able to verify and further their work by collecting data on a larger population of subjects. Among others we expect to verify their hypothesis that to the stationary nature of the breaking-in process and the intrusion process during the standard attack phase is characterized by exponential distribution. Finally, the proposed study will be also usable for the purpose of evaluation of intrusion detection systems.

Marcin Paprzycki | L. M. Guard | M. D. Crossland | J. P. Thomas

[1] I. Monitor. Information Security Management Handbook , 2000 .

[2] Stephen Northcutt,et al. Network Intrusion Detection: An Analyst's Hand-book , 1999 .

[3] Biswanath Mukherjee,et al. A Methodology for Testing Intrusion Detection Systems , 1996, IEEE Trans. Software Eng..

[4] Udo W. Pooch,et al. Using an isolated network laboratory to teach advanced networks and security , 2001, SIGCSE '01.

[5] Anne Gates Applin,et al. Second language acquisition and CS1 , 2001, SIGCSE '01.

[6] Richard A. Kemmerer,et al. State Transition Analysis: A Rule-Based Intrusion Detection Approach , 1995, IEEE Trans. Software Eng..

[7] Isij Monitor,et al. Network Intrusion Detection: An Analyst’s Handbook , 2000 .

[8] Rodolphe Ortalo,et al. Experimenting with Quantitative Evaluation Tools for Monitoring Operational Security , 1999, IEEE Trans. Software Eng..

[9] Tomas Olovsson,et al. A Quantitative Model of the Security Intrusion Process Based on Attacker Behavior , 1997, IEEE Trans. Software Eng..