Alert Correlation through a Multi Components Architecture

Alert correlation is a process that analyzes the raw alerts produced by one or more intrusion detection systems, reduces nonrelevant ones, groups together alerts based on similarity and causality relationships between them and finally makes aconcise and meaningful view of occurring or attempted intrusions. Unfortunately, most correlation approaches use just a few components that aim only specific correlation issues and so cause reduction in correlation rate. This paper uses a general correlation model that has already been presented in [9] and is consisted of a comprehensive set of components. Then some changes are applied in the component that is related to multi-step attack scenario to detect them better and so to improve semantic level of alerts. The results of experiments with DARPA 2000 data set obviously show the effectiveness of the proposed approach.DOI:http://dx.doi.org/10.11591/ijece.v3i4.277

Exploring Managers’ Experiences of Hospital Disaster Preparedness: A Qualitative Study

Background: Preparedness is one of the important and effective pre-crisis management stages and involves all actions and programs that enable the organization to respond quickly and effectively in critical situations. To this end, this study aimed to explore the experiences of crisis managers and experts in hospital disaster preparedness. Methods: This qualitative study was conducted using conventional content analysis in 2019. The research population included hospital managers and crisis specialists in Ardabil Province. The participants were 14 managers and crisis specialists who were selected using purposive sampling. The data were collected through semi-structured interviews and analyzed using Griesheim and Landman’s qualitative content analysis approach. Results: The analysis of the data revealed four main categories including management and planning, infrastructural development, human resources, and intersectoral coordination. Conclusion: The findings of the present study highlighted the significance of preparedness for emergencies, management and planning, having codified instructions, and implementation and evaluation to increase the preparedness of hospitals to deal with emergencies