To solve those problems, alert correlation and analysis become the research point of this realm.
为了解决上述问题,对告警的相关分析逐渐成为该领域的研究重点。
So, it's necessary that apply alert correlation methods develop several IDS coordination modes to analysis alerts and build distinct attack scenarios and reduce the volume of false alerts.
因此,通过应用告警相关方法开发入侵检测系统的协作模块,通过分析关联告警产生清晰的攻击过程描述,通过生成综合告警来减少假告警的数量提高检测效率非常必要。
应用推荐