Open Science Research Excellence
%0 Journal Article
%A Nadjah Chergui and  Narhimene Boustia
%D 2016 
%J  International Journal of Computer and Information Engineering
%B World Academy of Science, Engineering and Technology
%I International Science Index 111, 2016
%T Using Vulnerability to Reduce False Positive Rate in Intrusion Detection Systems
%V 111
%X Intrusion Detection Systems are an essential tool for
network security infrastructure. However, IDSs have a serious
problem which is the generating of massive number of alerts, most of
them are false positive ones which can hide true alerts and make the
analyst confused to analyze the right alerts for report the true attacks.
The purpose behind this paper is to present a formalism model to
perform correlation engine by the reduction of false positive alerts
basing on vulnerability contextual information. For that, we propose
a formalism model based on non-monotonic JClassicδє description
logic augmented with a default (δ) and an exception (є) operator that
allows a dynamic inference according to contextual information.
%P 486 - 491