X-Wray Stats and Performance EXplorer

Abstract

The X-Wray Stats and Performance EXplorer (X-Wray SPEX) is a test bed that allows intrusion detection tools to be rapidly tested, analyzed, and compared. The test bed itself consists of a small cluster employing the open grid engine to allow the automation of the testing process. Performance information (i.e., elapsed time, central processing unit load, memory usage, input/output [I/O] used, I/O wait, maximum virtual memory) is collected. In addition, X-Wray SPEX allows for large datasets to be thoroughly and quickly tagged by human analysts. The tool s output is compared to the human-based tagging to provide information about false positive and false negative detection rates. This report describes the test bed architecture and the tagging process and format, gives examples of the output format, and provides the results of the gage repeatability and reproducibility study conducted to validate the measurement capability of the test bed.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 2014
Accession Number
ADA600101

Entities

People

  • Carlos Mateo
  • Justin Wray
  • Ralph Ritchey
  • Sidney Smith
  • Travis Parker

Organizations

  • United States Army Research Laboratory

Tags

DTIC Thesaurus Topics

  • Air Force
  • Central Processing Units
  • Computer Networks
  • Data Sets
  • Detection
  • Intrusion
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Measurement
  • Military Research
  • Network Protocols
  • Networks
  • Packet Loss
  • Test Beds

Readers

  • Graph Algorithms and Convex Optimization.
  • Parallel and Distributed Computing.
  • Sensor Fusion and Tracking Systems.