Consider a system that generates 10 million audit records per day.Also assume that there are on average 10 attacks per day on this system and that each such attack is reflected in 20 records.If the intrusion-detection system has a true-alarm rate of 0.6 and a false-alarm rate of 0.0005,what percentage of alarms generated by the system correspond to real intrusions?
问题信息
-
扫描二维码,关注牛客网
- 意见反馈
-
下载牛客APP,随时随地刷题
扫一扫,把题目装进口袋
- 求职之前,先上牛客
-
扫描二维码,进入QQ群
扫描二维码,关注牛客公众号
- 公司地址:北京市朝阳区北苑路北美国际商务中心K1座一层-北京牛客科技有限公司
- 联系方式:010-60728802 投诉举报电话:010-57596212(朝阳人力社保局)
- 牛客科技© All rights reserved admin@nowcoder.com
- 京ICP备14055008号-4 增值电信业务经营许可证 营业执照 人力资源服务许可证
-
京公网安备
11010502036488号
The probability of occurrence of intrusive records is 10*20/ 10⁶= 0 .0002.Using Bayes' theorem,the probability that an alarm corresponds to a real intrusion is simply 0 ,0002 *0 .6/(0.0002 *0 .6 +0.9998 * 0 0005) = 0.193.