Difference between revisions of "Talk:Benchmark"

Revision as of 01:31, 14 July 2016

The meaning of the diagonal

I don't think it's fair to call the diagonal line in the FPR/TPR chart a "random guess" line. The FPR == TPR equation translates to FP/(FP+TN) == TP/(TP+FN), meaning FP*FN == TN*TP, or FP/TP == TN/FN. The FPR > TPR area below the line does not put the tool into a "worse than guessing" shame list. The last equation suggests a different interpretation of that area, "the noise rate in reporting suspects exceeds the silence rate about non-issues".

The "worse than guessing" interpretation seems to come from the following scenario. We have n real and m fake vulnerabilities. In each of the two groups, let the tool (or a monkey) decide which vulnerability is real. I guess this scenario ignores that the tool does not get the list of these vulnerabilities as its input. --Eelgheez (talk) 20:24, 13 July 2016 (CDT)

Revision as of 01:28, 14 July 2016 (view source) Eelgheez (talk \| contribs) m ← Older edit		Revision as of 01:31, 14 July 2016 (view source) Eelgheez (talk \| contribs) m Newer edit →
Line 3:		Line 3:
	I don't think it's fair to call the diagonal line in the FPR/TPR chart a "random guess" line. The FPR == TPR equation translates to FP/(FP+TN) == TP/(TP+FN), meaning FPFN == TNTP, or FP/TP == TN/FN. The FPR > TPR area below the line does not put the tool into a "worse than guessing" shame list. The last equation suggests a different interpretation of that area, "the noise rate in reporting suspects exceeds the silence rate about non-issues".		I don't think it's fair to call the diagonal line in the FPR/TPR chart a "random guess" line. The FPR == TPR equation translates to FP/(FP+TN) == TP/(TP+FN), meaning FPFN == TNTP, or FP/TP == TN/FN. The FPR > TPR area below the line does not put the tool into a "worse than guessing" shame list. The last equation suggests a different interpretation of that area, "the noise rate in reporting suspects exceeds the silence rate about non-issues".

−	The "worse than guessing" interpretation seems to come from the following scenario. We have 5 real and 5 fake vulnerabilities. ~~For~~ each of the two groups, let the tool (or a monkey) decide which vulnerability is real. I guess this scenario ignores that the tool does not get the list of these vulnerabilities as its input. --[[User:Eelgheez\|Eelgheez]] ([[User talk:Eelgheez\|talk]]) 20:24, 13 July 2016 (CDT)	+	The "worse than guessing" interpretation seems to come from the following scenario. We have ''n'' real and ''m'' fake vulnerabilities. In each of the two groups, let the tool (or a monkey) decide which vulnerability is real. I guess this scenario ignores that the tool does not get the list of these vulnerabilities as its input. --[[User:Eelgheez\|Eelgheez]] ([[User talk:Eelgheez\|talk]]) 20:24, 13 July 2016 (CDT)

Difference between revisions of "Talk:Benchmark"

Revision as of 01:31, 14 July 2016

The meaning of the diagonal

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools