False-positive definitions

A test result that is false-positive.
noun
0
0
Being or relating to a result from a medical test that is erroneously positive.
adjective
0
0
A test result that is false-positive.
noun
0
0
Being or relating to a result from a medical test that is erroneously positive.
adjective
0
0
The erroneous identification of a threat or dangerous condition that turns out to be harmless. False positives often occur in intrusion detection systems. See IDS. Contrast with false negative.
0
0
Advertisement
Occurs if there is a claim of a network intrusion but one did not occur. An Intrusion Detection System (IDS) analyzes network traffic and raises alarms if it detects anything suspicious. For example, it may alert the intrusion analysts because it has noticed network traffic trying to exploit a vulnerability in the Microsoft Internet Information Server (IIS). The analyst will then have to look at the notice to decide whether, indeed, the alarm is a false positive; the organization may not have any IIS servers. Crackers sometimes try to create massive numbers of false positives to divert the attention of intrusion analysts away from a real attack. Therefore, tuning the Intrusion Detection System (IDS) so that false positives are minimized while no real positives are missed is a task that requires a deep understanding of the underlying technology, attack patterns, and the organization’s infrastructure. False positives also exist in the security space of pen testing. Most automated tools generate false positives, resulting from the lack of effective Artificial Intelligence (AI) in the scanning engine; therefore, the discovered issue reports have to be screened thoroughly. More recently, false positive is a term also applied to the situation in which email is identified as “spam” by a spam-filtering service when in reality it is not spam but some other legitimate file. Given the false positive situation, the most important accuracy measure of any spam filtering system is that the number of real emails falsely identified as spam should be as close to zero as possible. Because chances exist that nonspam email can trigger a filtering rule erroneously, false positives do occur, angering email users who do not receive an anticipated email message that supposedly was sent. Some spam-filtering services such as Brightmail claim a false positive rate of only one false positive per one million emails. Another accuracy measure is with the number of spam messages escaping detection by the filtering system—known as a “false negative.” This number should also be as low as possible. Demon. Demon Spam-Filtering Service: Frequently Asked Questions. [Online, 2004.] Demon Products Website. http://www.demon.nl/eng/products/services/spamfilterfaq1.html.
0
0
A result of a test that shows as present something that is absent.

A false positive from a cancer screening test will unnecessarily frighten a healthy person, a false negative will deprive them of timely treatment.

A false positive can be returned on a password checking algorithm when the password is tested against a dictionary but the password does not contain a dictionary word.

noun
0
0
(statistics) Type I error.
noun
0
0