Classifying security alerts from multiple sensors based on hybrid approach
Protecting and assuring confidential information on the internet is a crucial need. Many organizations have installed multiple security sensors for complete monitoring and detection (for example the deployment of network-based Intrusion Detection Systems (NIDSs) in a distributed network). In effect,...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Conference or Workshop Item |
| Published: |
2012
|
| Online Access: | http://eprints.utm.my/id/eprint/34025/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | Protecting and assuring confidential information on the internet is a crucial need. Many organizations have installed multiple security sensors for complete monitoring and detection (for example the deployment of network-based Intrusion Detection Systems (NIDSs) in a distributed network). In effect, an enormous number of alerts are generated in a different kind of formats. This overburden the Security Analyst (SA) to conduct manual alert correlation (AC) since it would be tedious, labour intensive and worst, error prone. |
|---|