Abimbola, Abiola, Munoz, Jose and Buchanan, William J (2006) Investigating false positive reduction in HTTP via procedure analysis. In: IEEE International Conference on Networking and Services (ICNS 2006), 2006, Silicon Valley, California, USA.
Available under License Creative Commons Attribution Non-commercial.
Download (135kB) | Preview
This paper focuses on high false-positive rate of attacks. First, the merits and demerits of research work in curbing false positive rate of attacks in intrusion detection systems (IDSs) are discussed. Then we present our research efforts in the form of an IDS called NetHost-Sensor, recap on past NetHost-Sensor research contributions and discusses in detail its novel procedure analysis technique in curbing false-positive. We discuss in detail, the NetHost-Sensor methodology, its procedure analysis technique and report on our experimental investigation that shows the reduction of false-positives, using HTTP network communication as a medium for analysis. Finally, we validate our research work by comparing false-positives with Snort IDS
|Item Type:||Conference or Workshop Item (Paper)|
|Uncontrolled Keywords:||Computer systems; System security; Network monitoring; Intrusion identification systems; Pattern recognition; NetHost-sensor; Performance;|
|University Divisions/Research Centres:||Faculty of Engineering, Computing and Creative Industries > School of Computing|
|Dewey Decimal Subjects:||000 Computer science, information & general works > 000 Computer science, knowledge & systems > 005 Computer programming, programs & data|
|Library of Congress Subjects:||Q Science > QA Mathematics > QA76 Computer software|
|Depositing User:||RAE Import|
|Date Deposited:||02 Jun 2008 16:28|
|Last Modified:||19 Jan 2011 14:06|
Actions (login required)