Sciweavers

CNSR
2008
IEEE

Critical Episode Mining in Intrusion Detection Alerts

14 years 5 months ago
Critical Episode Mining in Intrusion Detection Alerts
One of the most important steps in attack detection using Intrusion Detection Systems (IDSs) is dealing with huge number of alerts that can be either critical single alerts and multi-step attack scenarios or false alerts and non-critical ones. In this paper we try to address the problem of managing alerts via a multi-layer alert correlation and ltering that can identify critical alerts after each step of correlation and ltering. After applying
Mahboobeh Soleimani, Ali A. Ghorbani
Added 29 May 2010
Updated 29 May 2010
Type Conference
Year 2008
Where CNSR
Authors Mahboobeh Soleimani, Ali A. Ghorbani
Comments (0)