An erroneous acceptance of the hypothesis that a statistically significant event has been observed. This is also referred to as a type 1 error. When “health-testing” the components of a device, it often refers to a declaration that a component has malfunctioned – based on some statistical test(s) – despite the fact that the component was actually working correctly.
See NIST SP 800-90B under False positive for more information.
An alert that incorrectly indicates that a vulnerability is present.
See NIST SP 800-115 for more information.
Incorrectly classifying benign activity as malicious.
See NIST SP 800-86 for more information.
An alert that incorrectly indicates that malicious activity is occurring.
See NIST SP 800-61 Rev. 2 for more information.
An instance in which a security tool incorrectly classifies benign content as malicious.
See NIST SP 800-83 Rev. 1 for more information.