Table 4.
Requirements for the design of an effective and trustworthy CIDS mentioned in [54].
| Requirement | Description |
|---|---|
| Accountability | Participating nodes must be held responsible for their actions. |
| Integrity | The integrity of the alert data should be guaranteed, since the accuracy of the detection depends on the alert data. |
| Resilience | The existence of single-points-of-failure (SPoFs) and the dependence of the system’s normal operations on a small group of nodes should be avoided. |
| Consensus | The proposed system needs to be able to reach a consensus regarding both the quality of individual alert data and the trustworthiness of each participating node. |
| Scalability | The proposed system needs to be scalable to a large number of participating nodes. |
| Minimum Overhead | The proposed system should incur minimum communication and computation overhead. |
| Privacy | The proposed system should provide the participating nodes with the ability to keep their alert data private and to selectively disclose alert data as they wish. Simultaneously, the requirements related to accountability and data integrity should still hold. |