SoK: Reshaping Research on Network Intrusion Detection Systems
Conference ACM Asia Conference on Computer and Communications Security
Bangalore, India
Oneliner: We endorse future work in this space to follow the three assertions stated here.
This was my first time in India. It was… weird. Bangalore is very chaotic and it took me more time to go from my plane (after it landed) to my Hotel, than going from the Keflavik airport to London! Still, I really enjoyed AsiaCCS’26 – far more than AsiaCCS’25 (albeit this was likely because, for AsiaCCS’25, I was particularly busy and couldn’t spend much time enjoying the event).
That said, I loved giving this talk. This was my very first “solo” paper: it took a while before it was accepted (I received three rejections before!) but I believe that the final piece was a significant improvement w.r.t. its prior variants. I hope the community will appreciate it, too!
As an aside, right after this talk, I presented also the other paper I co-authored with my colleagues from the University of Ghent (you can get ithere). I must thank the organizers for making this decision, since it created the perfect setup to deliver both a “conceptual” talk (i.e., the one of this SoK) and a “technical” talk (i.e., the one of the other paper) which ultimately referred to the same research domain (i.e., applied ML for network intrusion detection).
