Top Qs
Timeline
Chat
Perspective
Alert correlation
Type of log analysis From Wikipedia, the free encyclopedia
Remove ads
Alert correlation is a type of log analysis. It focuses on the process of clustering alerts (events), generated by NIDS and HIDS computer systems, to form higher-level pieces of information.
 | This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these messages)
|
Example of simple alert correlation is grouping invalid login attempts to report single incident like "10000 invalid login attempts on host X".
Remove ads
See also
References
Wikiwand - on
Seamless Wikipedia browsing. On steroids.
Remove ads