Intrusion response prioritization based on fuzzy ELECTRE multiple criteria decision making technique

Intrusion Detection System (IDS) detects the intrusions and produces alerts whereas an Automated Intrusion Response System (AIRS) selects and triggers the appropriate response from the pool of response sets, based on some response selection criteria to mitigate the intrusion without delay. The major challenges for designing an AIRS are the precise measurement of the importance weight of each response selection criterion and intrusion response set prioritization. Fuzzy ELECTRE (ELimination and Choice Expressing REality) is one of the widely used multiple criteria decision making (MCDM) method. This paper presents, the application of fuzzy ELECTRE, which will be best suited to deal with the mentioned challenges while designing an AIRS. Fuzzy ELECTRE technique will not only accomplish the precise measurement of the criteria due to the use of fuzzy but will also resolve the problem of intrusion response set prioritization. Further, the obtained prioritized response set can be utilized by the AIRS for selecting the optimum response from the prioritized response set.