True Positive Negative False Positive Negative Alerts
Types of Alerts: True Positive, True Negative, False Positive, False Negative
In security, whether it is physical or cyber security, the alerts are basically 4 types. here they are listed.
Security operation centers in cyber security focus on reducing false positives to improve efficiency.
True Positive: Alert triggered, Really the incident happened.
True Negative: No Alert, Everything is fine.
False Positive: False Alert, however, nothing happened.
False Negative: No Alert, however, the incident that occurred means a security breach happened.
The noisiest alerts are of the type “False positive”, however, the most worrisome scenario is “False Negative”
The “True positive” is the alert you expect from the well-calibrated alert system.