A comprehensive vulnerability based alert management approach for large networks

► We propose a comprehensive framework to manage IDS alerts. ► We construct a dynamic threat profile to improve the accuracy of alerts. ► Improves the quality of alerts by filtering out the unnecessary alerts. ► Eliminates the redundant and isolated alerts after alert verification process. ► Introduces alert metrics to improve the semantics of alerts.