Research Output

Investigating false positive reduction in HTTP via procedure analysis.

  This paper focuses on high false-positive rate of attacks. First, the merits and demerits of research work in curbing false positive rate of attacks in intrusion detection systems (IDSs) are discussed. Then we present our research efforts in the form of an IDS called NetHost-Sensor, recap on past NetHost-Sensor research contributions and discusses in detail its novel procedure analysis technique in curbing false-positive. We discuss in detail, the NetHost-Sensor methodology, its procedure analysis technique and report on our experimental investigation that shows the reduction of false-positives, using HTTP network communication as a medium for analysis. Finally, we validate our research work by comparing false-positives with Snort IDS

  • Date:

    16 July 2006

  • Publication Status:

    Published

  • DOI:

    10.1109/ICNS.2006.65

  • Library of Congress:

    QA76 Computer software

  • Dewey Decimal Classification:

    005 Computer programming, programs & data

Citation

Abimbola, A., Munoz, J. & Buchanan, W. J. (2006). Investigating false positive reduction in HTTP via procedure analysis. doi:10.1109/ICNS.2006.65

Authors

Keywords

Computer systems; System security; Network monitoring; Intrusion identification systems; Pattern recognition; NetHost-sensor; Performance;

Available Documents