Our algorithm performs the correlation process in a polynomial time. Experimentation are achieved on data collected from a real system monitoring. The result is ...
Our modeling shows an alert as an interpretation which allows us to have an efficient algorithm that performs the correlation process in a polynomial time.
A New Approach for QCL-Based Alert Correlation Process | Request ...
www.researchgate.net › ... › IDS
Our modeling shows an alert as an interpretation which allows us to have an efficient algorithm that performs the correlation process in a polynomial time.
In this paper, we propose a new algorithm for a logical-based alerts correlation approach that integrates: security operator's knowledge and preferences.
This study implements an Alert Correlation technique by using an improved cluster algorithm for an optimized correlation in the process of attack detection.
Missing: QCL- | Show results with:QCL-
People also ask
What is alert correlation?
What is the clinical correlation process?
This paper proposes an alert aggregation scheme that is based on conditional rough entropy and knowledge granularity to solve the problem of repetitive and ...
Missing: QCL- | Show results with:QCL-
Aug 30, 2024 · Alert correlation is a process of grouping alerts into a single unified incident. Alert correlation offers the following benefits.
Missing: QCL- | Show results with:QCL-
Instantiated first order qualitative choice logic for an efficient handling of alerts correlation. L Bouzar-Benlabiod, S Benferhat, T Bouabana-Tebibel.
Jun 28, 2015 · In this thesis, we propose a model for alert correlation process using a new preference logic, called IFO-QCL (for Instanciated First Order ...
Our modeling views an alert as an interpretation which allows us to have an efficient algorithm that performs the correlation process in a polynomial time. This ...