[2/27/24, 11:00 AM EST] CSRC has been experiencing technical issues. If you are unable to access a CSRC page or resource, or get a 503 error, please try reloading the page several times--it may help to wait a few minutes before trying again. We apologize for the inconvenience, and hope to have a solution in place next week.
An alert that incorrectly indicates that a vulnerability is present.
NIST SP 800-115
An alert that incorrectly indicates that malicious activity is occurring.
NIST SP 800-61 Rev. 2
An instance in which a security tool incorrectly classifies benign content as malicious.
NIST SP 800-83 Rev. 1
Incorrectly classifying benign activity as malicious.
NIST SP 800-86
An erroneous acceptance of the hypothesis that a statistically significant event has been observed. This is also referred to as a type 1 error. When “health-testing” the components of a device, it often refers to a declaration that a component has malfunctioned – based on some statistical test(s) – despite the fact that the component was actually working correctly.
NIST SP 800-90B under False positive