From the course: Advanced Intrusion Detection by Infosec
Join today to access over 25,500 courses taught by industry experts.
Issues with anomaly detection
From the course: Advanced Intrusion Detection by Infosec
Issues with anomaly detection
- [Instructor] Okay, welcome back to the videos. In this course, we talked a little bit about anomaly detection, what it is, how you can leverage it, and some of the common techniques associated with anomaly detection. Now we're going to wrap up with some of the issues or some of the challenges around anomaly detection. So, the first one being, the results can yield a lot of false positives just due to the nature of this process, right, to the nature of anomaly detection. You know, it's not like a signature where you have specific IOCs or specific artifacts that you're using to build rules around this. It's just really learning what normal is and trying to detect something that's abnormal, right? So, there's, you know, basically true for this, it's basically true for network-based anomaly detection, just because of the sure amount of data that you're crunching, right? So if you have a network-based IDS in place, and you have some anomaly detection rules, or depending on, you know…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.