Network Intrusion Detection Systems (NIDS) are designed to safeguard the security needs of
enterprise networks against cyber-attacks. However, NIDS networks suffer from several …

Alert correlation is a system which receives alerts from heterogeneous Intrusion Detection
Systems and reduces false alerts, detects high level patterns of attacks, increases the …

Current Security Information and Event Management systems (SIEMs) constitute the central
platform of modern security operations centers. They gather events from multiple sensors …

In the dynamic landscape of large enterprise cybersecurity, accurately and efficiently
correlating billions of security alerts into comprehensive incidents is a substantial challenge …

Distributed intrusion detection systems (IDS) are primarily deployed across the network to
monitor, detect, and report anomalies, as well as to respond in real-time. Predominantly, an …

With the promise of reliability in cloud, more enterprises are migrating to cloud. The process
of continuous integration/deployment (CICD) in cloud connects developers who need to …

Постановка проблемы: повышение сложности атак на облачные системы влечет за
собой необходимость разработки механизмов защиты, способных анализировать …

This paper presents an alert correlation system for mitigating the false positives problem on
network-based intrusion detection, when anomalous detection techniques are applied. The …

Deploying 5G networks on top of cloud-native environments provides unique benefits
including cost-effectiveness, flexibility, and scalability. However, the increased complexity of …

This paper presents an effective alert correlation method referred to as MaNaDAC to support
network intrusion detection. The method includes several modules such as feature ranking …