A NEW REDUCTION METHOD OF INTRUSION DETECTION FALSE ALERTS USING SNORT

Ben Soh; Daniel Bonello

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

A NEW REDUCTION METHOD OF INTRUSION DETECTION FALSE ALERTS USING SNORT

Topics: Intrusion Detection and Vulnerability Assessment

In Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE, 46-53, 2004 , Setúbal, Portugal

Authors: Ben Soh ¹ and Daniel Bonello ²

Affiliations: ¹ La Trobe University, Australia ; ² La Trobe Ubiversity, Australia

Keyword(s): Intrusion Detection, False Alerts, Snort.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Intrusion Detection & Prevention

Abstract: In this paper, we propose a new approach to reducing the high levels of false positives encountered when deploying an intrusion detection system using Snort in a real live networking environment. We carry out an analysis of the effectiveness of such method in different networking environments. We conclude that the level of false positives is reduced considerably with the introduction of our implemented pass rules and that the rates at which false positives are generated become manageable.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.119.127.13

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Soh, B. and Bonello, D. (2004). A NEW REDUCTION METHOD OF INTRUSION DETECTION FALSE ALERTS USING SNORT. In Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE; ISBN 972-8865-15-5; ISSN 2184-3236, SciTePress, pages 46-53. DOI: 10.5220/0001397300460053

@conference{icete04,
author={Ben Soh. and Daniel Bonello.},
title={A NEW REDUCTION METHOD OF INTRUSION DETECTION FALSE ALERTS USING SNORT},
booktitle={Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE},
year={2004},
pages={46-53},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001397300460053},
isbn={972-8865-15-5},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE
TI - A NEW REDUCTION METHOD OF INTRUSION DETECTION FALSE ALERTS USING SNORT
SN - 972-8865-15-5
IS - 2184-3236
AU - Soh, B.
AU - Bonello, D.
PY - 2004
SP - 46
EP - 53
DO - 10.5220/0001397300460053
PB - SciTePress