Towards adaptive event prioritization for network security - ideas and challenges
| dc.contributor.author | Renners, Leonard | |
| dc.contributor.editor | Meier, Michael | |
| dc.contributor.editor | Reinhardt, Delphine | |
| dc.contributor.editor | Wendzel, Steffen | |
| dc.date.accessioned | 2017-06-21T07:43:29Z | |
| dc.date.available | 2017-06-21T07:43:29Z | |
| dc.date.issued | 2016 | |
| dc.description.abstract | In the network security domain Intrusion detection systems (IDS) are known for their problems in creating huge amounts of data and especially false positives. Several approaches, originating in the machine learning domain, have been proposed for a better classification. However, threat prioritization has also shown, that a distinction in true and false positives is not always sufficient for a profound security analysis. We therefore propose an approach to combine several aspects from those two areas. On the one hand, threat and event prioritization approaches are rather static with fixed calculation rules, whereas rule learning in alert verification focuses mostly on a binary | en |
| dc.identifier.isbn | 978-3-88579-650-3 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Sicherheit 2016 - Sicherheit, Schutz und Zuverlässigkeit | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-256 | |
| dc.title | Towards adaptive event prioritization for network security - ideas and challenges | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 202 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 197 | |
| gi.conference.date | 5.-7. April 2016 | |
| gi.conference.location | Bonn |
Dateien
Originalbündel
1 - 1 von 1