Intrusion detection alert verification based on multi-level fuzzy comprehensive evaluation
基于多层模糊综合评判的入侵检测系统报警验证

An alert verification approach based on multi-level fuzzy comprehensive evaluation was presented. Experiments prove that it is effective to reduce false alerts and irrelevant alerts. The algorithm can deal with the uncertainties better than other alert verification approaches. The relevance score vectors obtained from the algorithm facilitate the formulation of fine and flexible security policies, and further alert processing.