• An Information-Theoretic Measure of Intrusion Detection Capability 

      Gu, Guofei; Fogla, Prahlad; Dagon, David; Lee, Wenke; Skoric, Boris (Georgia Institute of Technology, 2005)
      A fundamental problem in intrusion detection is what metric(s) can be used to objectively evaluate an intrusion detection system (IDS) in terms of its ability to correctly classify events as normal or intrusion. In this ...
    • Worm Detection Using Local Networks 

      Qin, Xinzhou; Dagon, David; Gu, Guofei; Lee, Wenke (Georgia Institute of Technology, 2004)
      The need for a global monitoring system for Internet worm detection is clear. Likewise, the need for local detection and response is also obvious. In this study, we used a large data set to review some of the worm monitoring ...