文章基本信息

标题：False Positives Reduction Techniques in Intrusion Detection Systems-A Review
本地全文：下载
作者：Asieh Mokarian ; Ahmad Faraahi ; Arash Ghorbannia Delavar 等
期刊名称：International Journal of Computer Science and Network Security
印刷版ISSN：1738-7906
出版年度：2013
卷号：13
期号：10
页码：128-134
出版社：International Journal of Computer Science and Network Security
摘要：During the last decade with the growth of cyber attacks, information safety has become an important issue all over the world. Intrusion detection systems (IDSs) are an essential element for network security infrastructure and play a very important role in detecting large number of attacks. Although there are different types of intrusion detection systems, all these systems suffer a common problem which is generating high volume of alerts and huge number of false positives. This drawback has become the main motivation for many research papers in IDS area. The aim of conducted research in the field is to propose different techniques to handle the alerts, reduce them and distinguish real attacks from false positives and low importance events. This manuscript is a survey paper that represents a review of the current research related to the false positives problem. The focus will be on data mining techniques of alert reduction. This paper reviews more than 30 related studies during the last decade with the hope of providing a reference for further research in this area. Several open issues have also been addressed in this paper.
关键词：network security; intrusion detection system; data mining; false positive rate; alert reduction