Title :
Intrusion detection using alert prioritization and multiple minimum supports
Author :
Catalin Mironeanu;Mitica Craus;Cnstian Nicolae Butincu
Author_Institution :
Department of Computer Science and Engineering, Faculty of Automatic Control and Computer Engineering "
Abstract :
Due to increase in traffic volume, current commercial IDSs (Intrusion Detection Systems) usually tend to produce a very large number of alarms. Although these alarms are triggered by actual intrusions, they are often triggered by regular user behavior, thus increasing the false alarm rate and overwhelming the security administrator. Mining algorithms that identify association rules provide an in-depth analysis of security breaches and extend the functionality of IDSs. In this paper we present a potential solution for reducing the false alarm rate. Our approach is based on the prioritization of alerts, a rescoring mechanism and data mining techniques with multiple minimum supports.
Keywords :
Decision support systems
Conference_Titel :
RoEduNet International Conference - Networking in Education and Research (RoEduNet NER), 2015 14th
Print_ISBN :
978-1-4673-8179-6
Electronic_ISBN :
2247-5443
DOI :
10.1109/RoEduNet.2015.7311978
