5 search results - page 1 / 1 » Real-Time Alert Correlation with Type Graphs |
CORR
2010
Springer
13 years 4 months ago
2010
Springer
The premise of automated alert correlation is to accept that false alerts from a low level intrusion detection system are inevitable and use attack models to explain the output in ...
COMCOM
2006
13 years 4 months ago
2006
To defend against multi-step intrusions in high-speed networks, efficient algorithms are needed to correlate isolated alerts into attack scenarios. Existing correlation methods us...
NDSS
2005
IEEE
13 years 10 months ago
2005
IEEE
Current intrusion detection systems point out suspicious states or events but do not show how the suspicious state or events relate to other states or events in the system. We sho...
CORR
2008
Springer
13 years 4 months ago
2008
Springer
: Network intrusion detection systems are themselves becoming targets of attackers. Alert flood attacks may be used to conceal malicious activity by hiding it among a deluge of fa...
VIROLOGY
2010
13 years 2 months ago
2010
By looking on how computer security issues are handled today, dealing with numerous and unknown events is not easy. Events need to be normalized, abnormal behaviors must be describ...