213
Information Engineering and Education Science – Zheng (Ed.)
© 2015 Taylor & Francis Group, London, ISBN 978-1-138-02655-1
The alert correlation analysis of intrusion detection
Dong Xu, Da Wei, Jianqi Zhu, Xuewei Cheng & Ming Li
Computer Science Department, Jilin University, Changchun, China
ABSTRACT: With the development of network technology, network multi-step attack becomes one
of the primary means of network attacks. However, when detecting the multi-step network attacks, IDSs
show some problems such as redundant alarms and lack of real-time warning. In this paper, an Alert
Integration and Association Method (AIAM) is proposed. The method raises the alert of network multi-
step attacks through fusing the redundant alarms and detects them ...