Experimental Evaluation of Network Security Through a Hierarchical Quantitative Metrics Model

F. El-Hassan, A. Matrawy, N. Seddigh, and B. Nandy (Canada)


Network Security, Metrics, Information Assurance.


In this paper, we present an approach towards the evalua tion of network security. This approach is based on a Hi erarchical Quantitative Metrics (HQM) model that enables the representation of important aspects of network secu rity using quantitative metrics. The proposed model, com bined with a general evaluation framework, would enable the generation of a grand metric that gauges the overall se curity status of a network. The main contributions of this work are (1) Proposal and use of the HQM for network security evaluation (2) Demonstration of the HQM model’s applicability through an example set of Intrusion Detection System (IDS) metrics and the implementation of a prototype tool that automates the use of this model (3) Presentation of results for experi ments conducted using traces of real network traffic which is, to the best of our knowledge, the only results reported in this area using real network traffic. Our results are followed by a discussion on the impact of different factors affecting the evaluation process.

