Name
Abstract | ||
|---|---|---|
Current intrusion detection systems generate too many alerts. These alerts are im- precise and partial. Furthermore, they contain low level information. These alerts are therefore of limited interest for a human operator. Alert correlation is a promising technology to reduce the number of alerts, improve the diagnostic and provide a better vision of the security of the system in the case of an intrusion. This paper presents an overview of different alert correlation technologies and shows how these technologies can be applied to intrusion detection. |
Year | DOI | Venue |
|---|---|---|
2004 | 10.3166/tsi.23.359-390 | Technique et Science Informatiques |
Keywords | DocType | Volume |
correlation.,mots-clés :sécurité,corrélation. keywords:security,détection d'intrusions,intrusion detection,intrusion detection system | Journal | 23 |
Issue | Citations | PageRank |
3 | 0 | 0.34 |
References | Authors | |
11 | 9 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Hervé Debar | 1 | 1238 | 120.68 |
| Benjamin Morin | 2 | 274 | 17.62 |
| Frédéric Cuppens | 3 | 2146 | 258.58 |
| Fabien Autrel | 4 | 69 | 7.16 |
| Mé Ludovic | 5 | 156 | 14.53 |
| Bernard Vivinis | 6 | 7 | 1.36 |
| Salem Benferhat | 7 | 2585 | 216.23 |
| Mireille Ducassé | 8 | 599 | 65.02 |
| Rodolphe Ortalo | 9 | 330 | 47.99 |