Anomaly-based intrusion detection systems are usually criticized because they lack a classification of attack, thus security teams have to manually inspect any raised alert to classify it. We present a new approach, Panacea, to automatically and systematically classify attacks detected by an anomaly-based network intrusion detection system.
| Originele taal-2 | Engels |
|---|
| Plaats van productie | Enschede |
|---|
| Uitgeverij | Universiteit Twente |
|---|
| Aantal pagina's | 21 |
|---|
| Status | Gepubliceerd - 2009 |
|---|
| Naam | CTIT Technical Report |
|---|
| Volume | TR-CTIT-09-10 |
|---|