Design and Realization of Alert Correlation Component on IDS
入侵检测系统中告警相关部件的设计与实现

With the rapid development of network, managing the alerts from IDSs becomes more and more important. In this paper, an alert correlation component of IDS is designed and realized based on causal correlation method. Experiments show that the alert correlation component is effective in reducing the number of alerts and the reduction rate can reach 83.26%.