Alarm Reduction and Correlation in Intrusion Detection Systems

@inproceedings{Chyssler2004AlarmRA,
  title={Alarm Reduction and Correlation in Intrusion Detection Systems},
  author={Tobias Chyssler and Stefan Burschka and Michael Semling and Tomas Lingvall and Kalle Burbeck},
  booktitle={DIMVA},
  year={2004}
}
Large Critical Complex Infrastructures are increasingly dependent on IP networks. Reliability by redundancy and tolerance are an imperative for such dependable networks. In order to achieve the desired reliability, the detection of faults, misuse, and attacks is essential. This can be achieved by applying methods of intrusion detection. However, in large systems, these methods produce an uncontrollable vast amount of data which overwhelms human operators. This paper studies the role of alarm… CONTINUE READING
Highly Cited
This paper has 28 citations. REVIEW CITATIONS