99% false positives: A qualitative study of SOC analysts’ perspectives on security alarms

99% false positives: A qualitative study of SOC analysts’ perspectives on security alarms

In this work, we focus on the prevalence of False Positive (FP) alarms produced by security tools, and Security Operation Centers (SOCs) practitioners' perception of their quality. In an online survey we conducted with security practitioners (n = 20) working in SOCs, practitioners confirmed the...

Full description

Bibliographic Details
Main Authors: AlAhmadi, B, Martinovic, I, Axon, L
Format: Conference item
Language:English
Published: USENIX Association 2022

Similar Items