发布求助
文献互助 智能选刊 最新文献

Processing of IDS alerts in multi-step attacks

IF 1.3 Q3 COMPUTER SCIENCE, SOFTWARE ENGINEERING
Software Impacts Pub Date : 2024-02-01 DOI:10.1016/j.simpa.2024.100622
Tomáš Bajtoš, Pavol Sokol, František Kurimský
{"title":"Processing of IDS alerts in multi-step attacks","authors":"Tomáš Bajtoš,&nbsp;Pavol Sokol,&nbsp;František Kurimský","doi":"10.1016/j.simpa.2024.100622","DOIUrl":null,"url":null,"abstract":"<div><p>In this information age, we notice an increase in the quality of security threats. Organizations are forced to defend themselves against attacks in several steps. To identify the individual steps of attackers, we use several security technologies, among which we can include attack detection systems. Researchers or members of security teams have to deal with a large number of security events and alerts. A tool can help with this, which allows filtering relevant alerts and combining them into larger units without significant loss of information.</p></div>","PeriodicalId":29771,"journal":{"name":"Software Impacts","volume":null,"pages":null},"PeriodicalIF":1.3000,"publicationDate":"2024-02-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S2665963824000101/pdfft?md5=25d344d3f2cd233e67ae323025128af6&pid=1-s2.0-S2665963824000101-main.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Software Impacts","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2665963824000101","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, SOFTWARE ENGINEERING","Score":null,"Total":0}
引用次数: 0

Abstract

In this information age, we notice an increase in the quality of security threats. Organizations are forced to defend themselves against attacks in several steps. To identify the individual steps of attackers, we use several security technologies, among which we can include attack detection systems. Researchers or members of security teams have to deal with a large number of security events and alerts. A tool can help with this, which allows filtering relevant alerts and combining them into larger units without significant loss of information.

分享
查看原文 本刊更多论文
在多步骤攻击中处理 IDS 警报
在这个信息时代,我们注意到安全威胁的质量越来越高。企业不得不分几个步骤抵御攻击。为了识别攻击者的各个步骤,我们使用了多种安全技术,其中包括攻击检测系统。研究人员或安全团队成员必须处理大量的安全事件和警报。有一种工具可以帮助解决这个问题,它可以过滤相关警报,并在不丢失大量信息的情况下将它们组合成更大的单元。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
Software Impacts
Software Impacts Software
CiteScore
2.70
自引率
9.50%
发文量
0
审稿时长
16 days
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信