A Systematic Mapping Study on Intrusion Alert Analysis in Intrusion Detection Systems

A Systematic Mapping Study on Intrusion Alert Analysis in Intrusion Detection Systems

Intrusion alert analysis is an attractive and active topic in the area of intrusion detection systems. In recent decades, many research communities have been working in this field. The main objective of this article is to achieve a taxonomy of research fields in intrusion alert analysis by using a s...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:ACM computing surveys 2019-05, Vol.51 (3), p.1-41
Hauptverfasser: Ramaki, Ali Ahmadian, Rasoolzadegan, Abbas, Bafghi, Abbas Ghaemi
Format: Artikel
Sprache:eng
Schlagworte:
Computer science
Cybersecurity
High performance computing
Intrusion detection systems
Mapping
Post-production processing
Taxonomy
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Intrusion alert analysis is an attractive and active topic in the area of intrusion detection systems. In recent decades, many research communities have been working in this field. The main objective of this article is to achieve a taxonomy of research fields in intrusion alert analysis by using a systematic mapping study of 468 high-quality papers. The results show that there are 10 different research topics in the field, which can be classified into three broad groups: pre-processing, processing, and post-processing. The processing group contains most of the research works, and the post-processing group is newer than others.
ISSN:0360-0300
1557-7341
DOI:10.1145/3184898