A Survey on IDS Alerts Classification Techniques

Intrusion detection can be defined as the method of identifying malicious activities that target a network and its resources. The main use of intrusion detection systems (IDS) is to detect attacks against information systems and networks. A main difficulty in the field of intrusion detection is the...

Full description

Saved in:
Bibliographic Details
Published in:International journal of computer applications 2014-01, Vol.105 (12)
Main Authors: Upadhyay, Shashikant, Singh, Rajni Ranjan
Format: Article
Language:English
Subjects:
Classification
Computer information security
Information systems
Intrusion
Mathematical models
Networks
Organizations
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Intrusion detection can be defined as the method of identifying malicious activities that target a network and its resources. The main use of intrusion detection systems (IDS) is to detect attacks against information systems and networks. A main difficulty in the field of intrusion detection is the organization of alerts. Normally IDS's produced numerous alerts, which cannot provide a clear idea to the analyst about what type of alert occur, which type of alert is generated etc. because of the huge number of alerts generated by these systems. One solution of this problem is classifying the alerts. During this paper, we try to represent an overview of IDS alerts classification techniques.
ISSN:0975-8887
0975-8887
DOI:10.5120/18431-9795