Confusion Matrix: Application in Security

— Informative analysis provided by confusion matrix if much beneficial and have many application.

What is confusion matrix?

Representation of confusion matrix.

As in above images, it represents the comparison of actual and predicted values, with four parameters :~

  1. True Negative : It represents the True but negative parameter labeled to one or other argument.
  2. True Positive : It represents the True but positive parameter labeled to another argument.
  3. False Positive : It represents the False but positive parameter.
  4. False Negative : It represents the False but Negative parameter.

— Here we can see, we’ve two types of False prediction. Which can also be considered as errors. These are categorized as :~

  1. Type 1 error : False Positive prediction
  2. Type 2 error: False Negative prediction

Of both, Type 1 error posses utmost significance. Consider the following example :

A deployed IDS in production environment, predicts a little magnitude of type 1 error, what does it represents? According to prediction no intrusion must have happen, by as it’s an error even at the instance of intrusion it doesn’t alarm, as it’s job is to do that. Thus, you can see the significance to deal with Type 1 error is most important.

Another example will of an antivirus software in systems, it may have high accuracy score, of ~95% for example, but in the remaining part some predictions will be False Positive, that’s when system will get into critical condition.

Thus, the signification of this metrics is of utmost significance, specially in the world of security.

This metric will help us to be more observant in the case of False Positive error, as cyber crimes is no joke now a days. They could cause a loss up to fortune to anyone.

— Conclusion



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store