The Chief Information Officer (CIO) at Old Dominion University –ODU- is trying to improve the university’s information network security. The CIO is trying to evaluate a new intrusion detection technology in the market for a possible replacement for the existing system. An intrusion detection system sounds an “alarm” each time possible malicious attack on a network is detected. The following information is provided: Event of interest, A, is an attack Evidence, B, is intrusion detection system setting off due to anomalous traffic Probability of an attack is 0.01 For the currently installed system, the probability of an alarm given that there is an attack is 0.9, while the probability of an alarm given there is no attack is 0.25. For the new technology, the probability of an alarm given that there is an attack is 0.8, while the probability of an alarm given there is no attack is 0.1. The CIO assumes that there are only two types of events: either there is, or there is no attack. The CIO is using “evidence ratio,” described as P(B|A) / P(B|A’) as a way to compare the technologies. Please help the CIO compare the new technology with the currently installed system by answering the following questions: What is evidence ratio for the currently installed system?

A First Course in Probability (10th Edition)
10th Edition
ISBN:9780134753119
Author:Sheldon Ross
Publisher:Sheldon Ross
Chapter1: Combinatorial Analysis
Section: Chapter Questions
Problem 1.1P: a. How many different 7-place license plates are possible if the first 2 places are for letters and...
icon
Related questions
icon
Concept explainers
Topic Video
Question

The Chief Information Officer (CIO) at Old Dominion University –ODU- is trying to improve the university’s information network security. The CIO is trying to evaluate a new intrusion detection technology in the market for a possible replacement for the existing system. An intrusion detection system sounds an “alarm” each time possible malicious attack on a network is detected. The following information is provided:

Event of interest, A, is an attack

Evidence, B, is intrusion detection system setting off due to anomalous traffic

Probability of an attack is 0.01

For the currently installed system, the probability of an alarm given that there is an attack is 0.9, while the probability of an alarm given there is no attack is 0.25.

For the new technology, the probability of an alarm given that there is an attack is 0.8, while the probability of an alarm given there is no attack is 0.1.

The CIO assumes that there are only two types of events: either there is, or there is no attack.

The CIO is using “evidence ratio,” described as P(B|A) / P(B|A’) as a way to compare the technologies. Please help the CIO compare the new technology with the currently installed system by answering the following questions:

What is evidence ratio for the currently installed system?

Expert Solution
trending now

Trending now

This is a popular solution!

steps

Step by step

Solved in 2 steps

Blurred answer
Knowledge Booster
Centre, Spread, and Shape of a Distribution
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, probability and related others by exploring similar questions and additional content below.
Similar questions
Recommended textbooks for you
A First Course in Probability (10th Edition)
A First Course in Probability (10th Edition)
Probability
ISBN:
9780134753119
Author:
Sheldon Ross
Publisher:
PEARSON
A First Course in Probability
A First Course in Probability
Probability
ISBN:
9780321794772
Author:
Sheldon Ross
Publisher:
PEARSON