Back to Search Start Over

On the Use of Different Statistical Tests for Alert Correlation - Short Paper.

Authors :
Hutchison, David
Kanade, Takeo
Kittler, Josef
Kleinberg, Jon M.
Mattern, Friedemann
Mitchell, John C.
Naor, Moni
Nierstrasz, Oscar
Pandu Rangan, C.
Steffen, Bernhard
Sudan, Madhu
Terzopoulos, Demetri
Tygar, Doug
Vardi, Moshe Y.
Weikum, Gerhard
Kruegel, Christopher
Lippmann, Richard
Clark, Andrew
Maggi, Federico
Zanero, Stefano
Source :
Recent Advances in Intrusion Detection (9783540743194); 2007, p167-177, 11p
Publication Year :
2007

Abstract

In this paper we analyze the use of different types of statistical tests for the correlation of anomaly detection alerts. We show that the Granger Causality Test, one of the few proposals that can be extended to the anomaly detection domain, strongly depends on good choices of a parameter which proves to be both sensitive and difficult to estimate. We propose a different approach based on a set of simpler statistical tests, and we prove that our criteria work well on a simplified correlation task, without requiring complex configuration parameters. [ABSTRACT FROM AUTHOR]

Details

Language :
English
ISBNs :
9783540743194
Database :
Complementary Index
Journal :
Recent Advances in Intrusion Detection (9783540743194)
Publication Type :
Book
Accession number :
33175682
Full Text :
https://doi.org/10.1007/978-3-540-74320-0_9
Full Text Access
View/download PDF

Tools

Authors Abstract Subjects Details