DocumentCode :
3681054
Title :
Intrusion detection using alert prioritization and multiple minimum supports
Author :
Catalin Mironeanu;Mitica Craus;Cnstian Nicolae Butincu
Author_Institution :
Department of Computer Science and Engineering, Faculty of Automatic Control and Computer Engineering "
fYear :
2015
Firstpage :
109
Lastpage :
114
Abstract :
Due to increase in traffic volume, current commercial IDSs (Intrusion Detection Systems) usually tend to produce a very large number of alarms. Although these alarms are triggered by actual intrusions, they are often triggered by regular user behavior, thus increasing the false alarm rate and overwhelming the security administrator. Mining algorithms that identify association rules provide an in-depth analysis of security breaches and extend the functionality of IDSs. In this paper we present a potential solution for reducing the false alarm rate. Our approach is based on the prioritization of alerts, a rescoring mechanism and data mining techniques with multiple minimum supports.
Keywords :
Decision support systems
Publisher :
ieee
Conference_Titel :
RoEduNet International Conference - Networking in Education and Research (RoEduNet NER), 2015 14th
ISSN :
2068-1038
Print_ISBN :
978-1-4673-8179-6
Electronic_ISBN :
2247-5443
Type :
conf
DOI :
10.1109/RoEduNet.2015.7311978
Filename :
7311978
Link To Document :
بازگشت