Joshua Ojo Nehinbe scite author profile

Intrusion detectors isolate intrusions based on allowable and disallowable activities. The disallowable policy enforcers will alert only on events that are known to be bad while the allowable policy enforcer will alert on events that deviate from those that have been classified as good. However, these trade-offs become difficult to balance in a recent time due to the complexity of computer attacks. Accordingly, intrusion detectors generate tons of alerts that may signify realistic and false attacks. Most often, failed attacks are erroneously predicted and processed while classification trees that should have given detail descriptions of each clusters of the attacks are poorly constructed. This is because the qualities of clustering schemes that are generated are not evaluated with an appropriate model. Consequently, attacks in progress are not forestalled despite alerts that intrusion detectors generate beforehand. Therefore, this paper presents category utility paradigm for showing a good way of using clustering algorithm to partition audit trails. Series of evaluations showed how to adopt guessing strategy to improve the efficacy of intrusion detections.

show abstract

Emerging threats, risks and mitigation strategies in network forensics

Nehinbe

2011

View full text Add to dashboard

A Simple Method for Improving Intrusion Detections in Corporate Networks

Nehinbe

2010

View full text Add to dashboard

Automated Method for Reducing False Positives

Nehinbe

2010

View full text Add to dashboard

Concurrent reduction of false positives and redundant alerts

Nehinbe

2010

View full text Add to dashboard

A cost-effective strategy for splitting and allocating alerts' workloads during forensic investigations of very large IDS logs

Nehinbe

2021

IJITST

View full text Add to dashboard

12 3 4

scite is a Brooklyn-based startup that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

334 Leonard St

Brooklyn, NY 11211

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers