D.Y. Gamayunov
Popper’s falsifiability criterion helps us to distinguish between scientific and non-scientific theories. In this paper we try to discuss whether this criterion is applicable to the information security research, especially to the intrusion detection and malware research field. In fact, the designated research field seems to fail to satisfy the falsifiability criterion, because it lacks practice of publishing raw experimental data which is used to prove the theories. Existing public datasets like KDD Cup’99 dataset and VX Heavens virus dataset are outdated. At the same time new malware analysis projects tend to keep their datasets private. The conclusion is scientific community should pay more attention to creating and maintaining public open datasets of malware and any kinds of computer attacks related data
References: