In order to master these terms, just remember these things: any term that
includes False is a BAD THING, while True is a GOOD THING; and
Positive refers to an event/signature being triggered, while
Negative refers to an event/signature not being triggered. With these
facts in mind, notice how easy it is to master these terms:
False Positive – an event was triggered and the packet was
not actually attack traffic
False Negative – an event was not triggered and the packet
was actual attack traffic
True Positive – an event was triggered and the traffic was
actual attack traffic
True Negative – an event was not triggered and the traffic
was not actual attack traffic