Aggregating IDS Alerts Based on Time Threshold: Testing and Results
Journal Title: INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY - Year 2013, Vol 11, Issue 2
Abstract
Every secure system has the possibility to fail. Therefore, extra effort should be taken to protect these systems. Intrusion Detection Systems (IDSs) had been proposed with the aim of providing extra protection to security systems. These systems trigger thousands of alerts per day, which prompt security analysts to verify each alert for relevance and severity based on an aggregation criterion. Several aggregation methods have been proposed to collect these alerts. This paper presents our threshold aggregation system (TAS). Results shows that TAS aggregates IDS alerts accurately based on user demands and threshold value.
Authors and Affiliations
Homam Reda El-Taj
Keywords
Related Articles
- EP ID EP650292
- DOI 10.24297/ijct.v11i2.1175
- Views 45
- Downloads 0
Change Detection on SAR data using PCA Algorithm
In this paper, we proposed an approach for unsupervised change detection technique on SAR data. Change detection is process of automatically identifying and analyzing the regions which undergone some changes such as spat...
A Taxonomic Service for Species Identification
Taxonomy is the science of discovering, classifying and categorizing organisms into groups. Names are given to species when they are recognized for ecology, potential hazards or just for human culture and admiration. How...
Labeled UML model fragments composition by the SPL strategy
The software community intends to make use of a standard approach for the software development to not build software product from scratch. This approach ensures a high quality of software with a controllable cost. It aff...
Continuous & Piecewise Convex Behavior Of Maximum Values Of Some Generalized Measures Of Fuzzy Cross Entropy.
Consider two fuzzy sets A and B with same supporting points and the corresponding fuzzy vectors and respectively, where each can vary subject to the total fuzziness and each is known to us .In this paper, a compreh...
Back Radiation Suppression in Modified Aperture Coupled Microstrip Antenna by using patches under the substrate
A microstrip slot antenna for C Band has been proposed with compact structure and suppressed back radiation. In this paper, the feeding technique used is aperture coupling with a modification that patches and the feed li...