Discovering Coordinated Groups of IP Addresses Through Temporal Correlation of Alerts

Discovering Coordinated Groups of IP Addresses Through Temporal Correlation of Alerts

Network-based monitoring and intrusion detection systems generate a high number of alerts reporting the suspicious activity of IP addresses. The majority of alerts are dropped due to their low relevance, low priority, or due to high number of alerts themselves. We assume that these alerts still cont...

Full description

Bibliographic Details
Main Authors: Martin Zadnik, Jan Wrona, Karel Hynek, Tomas Cejka, Martin Husak
Format: Article
Language:English
Published: IEEE 2022-01-01
Series:IEEE Access
Subjects:
Alerts
clustering
correlation
IP address
situational awareness
Online Access:https://ieeexplore.ieee.org/document/9849653/

Internet

https://ieeexplore.ieee.org/document/9849653/

Similar Items