Enriching Intrusion Alerts Through Multi-Host Causality.
Samuel T. KingZhuoqing Morley MaoDominic G. LucchettiPeter M. ChenPublished in: NDSS (2005)
Keyphrases
- intrusion detection
- intrusion detection system
- alert correlation
- network security
- data sets
- anomaly detection
- decision support
- network traffic
- real world
- image processing
- video sequences
- computer systems
- decision making
- computer vision
- experimental data
- machine learning
- database
- malicious users
- attack scenarios
- network intrusion detection systems
- intrusion detection and prevention