TY  - JOUR
T1  - Correlated Alerts and Non-Intrusive Alerts
AU - Vennila, Dhanakoti AU - Nedunchezhian, R. 
JO  - International Journal of Soft Computing
VL  - 7
IS  - 6
SP  - 302
EP  - 309
PY  - 2012
DA  - 2001/08/19
SN  - 1816-9503
DO  - ijscomp.2012.302.309
UR  - https://makhillpublications.co/view-article.php?doi=ijscomp.2012.302.309
KW  - Alert correlation
KW  -collaborative intrusion detection
KW  -false positive analysis
KW  -computational intelligence approaches
KW  -India
AB  - As complete prevention of computer attacks is not possible, Intrusion Detection Systems (IDSs) play a very important role in minimizing the damage caused by different computer attacks. There are two Intrusion Detection Methods: namely misuse and anomaly-based. In particular, the main challenges in current research are highlighted and reviewed: alert correlation algorithms. The uses of Collaborative Intrusion Detection System (CIDS) together with other multiple security systems raise certain issues and challenges in alert correlation. Different techniques for alert correlation are discussed. The focus will be on correlation of CIDS alerts. Computational Intelligence approaches, together with their applications on IDSs are reviewed. In conclusion, the study highlights opportunities for an integrated solution to large-scale correlation alerts.
ER  -