A discussion on ‘Detection of intrusions in information systems by sequential change-point methods’ by Tartakovsky, Rozovskii, Blažek, and Kim

Tartakovsky et al. provide us with, and should be thanked for, an illuminating introduction to the problems of detecting intrusions and other denial of services attacks, and a thorough discussion and analysis of the relevance of CUSUM-based change detection algorithms for this purpose.This discussion mainly addresses three issues: introducing a minimum change magnitude, adaptation and tuning of CUSUM algorithms, and processing binary quantized data. The influence of the adaptation in the NP-CUSUM algorithm on its performances is questioned.