Investigating false positive reduction in HTTP via procedure analysis.

Research Output

This paper focuses on high false-positive rate of attacks. First, the merits and demerits of research work in curbing false positive rate of attacks in intrusion detection systems (IDSs) are discussed. Then we present our research efforts in the form of an IDS called NetHost-Sensor, recap on past NetHost-Sensor research contributions and discusses in detail its novel procedure analysis technique in curbing false-positive. We discuss in detail, the NetHost-Sensor methodology, its procedure analysis technique and report on our experimental investigation that shows the reduction of false-positives, using HTTP network communication as a medium for analysis. Finally, we validate our research work by comparing false-positives with Snort IDS

Date:

16 July 2006
Publication Status:

Published
DOI:

10.1109/ICNS.2006.65
Library of Congress:

QA76 Computer software
Dewey Decimal Classification:

005 Computer programming, programs & data

http://researchrepository.napier.ac.uk/output/244923 <p>Abimbola, A., Munoz, J., & Buchanan, W. J. (2006). Investigating false positive reduction in HTTP via procedure analysis. https://doi.org/10.1109/ICNS.2006.65</p>

Citation

Abimbola, A., Munoz, J., & Buchanan, W. J. (2006). Investigating false positive reduction in HTTP via procedure analysis. https://doi.org/10.1109/ICNS.2006.65