Using Adaptive Alert Classification to Reduce False Positives in Intrusion Detection
- 1 January 2004
- book chapter
- conference paper
- Published by Springer Science and Business Media LLC in Lecture Notes in Computer Science
Abstract
No abstract availableKeywords
This publication has 18 references indexed in Scilit:
- Managing alerts in a multi-intrusion detection environmentPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2005
- An Analysis of the 1999 DARPA/Lincoln Laboratory Evaluation Data for Network Anomaly DetectionLecture Notes in Computer Science, 2003
- The Effect of Identifying Vulnerabilities and Patching Software on the Utility of Network Intrusion DetectionLecture Notes in Computer Science, 2002
- Incremental Learning with Partial Instance MemoryLecture Notes in Computer Science, 2002
- Toward cost-sensitive modeling for intrusion detection and responseJournal of Computer Security, 2002
- Aggregation and Correlation of Intrusion-Detection AlertsLecture Notes in Computer Science, 2001
- The 1999 DARPA off-line intrusion detection evaluationComputer Networks, 2000
- The base-rate fallacy and its implications for the difficulty of intrusion detectionPublished by Association for Computing Machinery (ACM) ,1999
- MetaCostPublished by Association for Computing Machinery (ACM) ,1999
- An Intrusion-Detection ModelIEEE Transactions on Software Engineering, 1987