Hierarchical Model Improves Real-time Cyber Threat Detection
/ 1 min read
🧩 New hierarchical model enhances real-time cyber threat detection. A novel hierarchical event correlation model has been developed to improve the efficiency of Intrusion Detection Systems (IDS) by reducing the volume of alerts generated during cyber attacks. Unlike traditional methods that correlate alerts post-detection, this model correlates events before classification, streamlining the process and minimizing the workload for security analysts. By integrating features from both similarity and graph-based correlation techniques, the model achieved an impressive 87% reduction in data through aggregation, creating nearly 21,000 clusters in approximately 30 seconds during tests on the DARPA 99 Intrusion detection dataset. This advancement promises to simplify security operations and enhance response times to cyber threats.
