False Alert Reduction and Correlation for Attack Scenarios With Automatic Time Window
The Intrusion Detection System (IDS) will provide alerts for the attacks happened in the network. Managing and analyzing vast amount of the low level alerts are very difficult for network administrator. And also false alerts are raised from IDS. False alert reduction method has been proposed to reduce the number of false alerts raised by IDS. And also alert correlation method has been implemented to correlate the relation between the alerts. The model presented in this paper consists of two methods they are: static filter and adaptive filter.