Alert Verification Based on Attack Classification in Collaborative Intrusion Detection

@inproceedings{Xiao2007AlertVB,
  title={Alert Verification Based on Attack Classification in Collaborative Intrusion Detection},
  author={Min Xiao and Debao Xiao},
  year={2007}
}
The traditional intrusion detection system has the disadvantages of alert flooding and high false positive due to weak collaboration-awareness. The collaborative intrusion detection mechanism is advocated to overcome shortcomings of traditional IDS and alert verification and correlation are two important techniques to perform collaborative mechanisms. The goal of alert verification is to distinguish the false positives from true positives or confirm the confidence of the alert by integrating… CONTINUE READING

Citations

Publications citing this paper.
SHOWING 1-10 OF 11 CITATIONS

A test of intrusion alert filtering based on network information

  • Security and Communication Networks
  • 2015
VIEW 4 EXCERPTS
CITES BACKGROUND & METHODS
HIGHLY INFLUENCED

Multilevel Event Correlation Based on Collaboration and Temporal Causal Correlation

  • 2009 5th International Conference on Wireless Communications, Networking and Mobile Computing
  • 2009
VIEW 3 EXCERPTS
CITES BACKGROUND
HIGHLY INFLUENCED

A taxonomy on intrusion alert aggregation techniques

  • 2014 International Symposium on Biometrics and Security Technologies (ISBAST)
  • 2014
VIEW 1 EXCERPT

Context-aware intrusion alerts verification approach

  • 2014 10th International Conference on Information Assurance and Security
  • 2014

An IDS Alert Fusion Approach Based on Happened Before Relation

  • 2008 4th International Conference on Wireless Communications, Networking and Mobile Computing
  • 2008
VIEW 1 EXCERPT
CITES METHODS

Applying Data Fusion in Collaborative Alerts Correlation

  • 2008 International Symposium on Computer Science and Computational Technology
  • 2008

Similar Papers