A hierarchical security event correlation model for real-time threat detection and response
An Intrusion detection system (IDS) performs post-compromise detection of security breaches whenever preventive measures such as firewalls do not avert an attack. However, these systems raise a vast number of alerts that must be analyzed and triaged by security analysts. This process is largely manu...
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI
2024
|
Subjects: | |
Online Access: | https://repository.londonmet.ac.uk/9143/7/network-04-00004.pdf |