A hierarchical security event correlation model for real-time threat detection and response

An Intrusion detection system (IDS) performs post-compromise detection of security breaches whenever preventive measures such as firewalls do not avert an attack. However, these systems raise a vast number of alerts that must be analyzed and triaged by security analysts. This process is largely manu...

Full description

Bibliographic Details
Main Authors: Maosa, Herbert, Ouazzane, Karim, Ghanem, Mohamed Chahine
Format: Article
Language:English
Published: MDPI 2024
Subjects:
Online Access:https://repository.londonmet.ac.uk/9143/7/network-04-00004.pdf