Seldom cry wolf: Tuning out false positives on Network Intrusion Detection Systems
Intrusion Detection System (NIDS) management includes tasks such as system patching, signature updates and, of course, false positive identification and tuning. After attending SANS Downunder 2004 one of the major projects that I was deployed on was NIDS tuning for a financial services...