SIEM Selection Criteria for an efficient contextual security

被引:0
|
作者
Nabil, Moukafih [1 ]
Soukaina, Sabir [1 ]
Lakbabi, Abdelmajid [1 ]
Ghizlane, Orhanou [1 ]
机构
[1] Mohammed V Univ Rabat, Fac Sci, Lab Math Comp & Applicat, BP1014 RP, Rabat, Morocco
来源
2017 INTERNATIONAL SYMPOSIUM ON NETWORKS, COMPUTERS AND COMMUNICATIONS (ISNCC) | 2017年
关键词
SIEM; SOC; Security; Selection Criteria;
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
The IT environment is on a constant evolution and it's getting more complex. Therefore, organizations started to invest on integrating SOCs (Security Operation Center) to improve its security. Several studies have been carried out on this area of SOC analysis, its elaboration and the balance between the triad PPT (Person, Process and Technology). Our aim in this paper is to propose selection criteria that will help organizations analyzing different SOCs and perhaps chose the ideal one. In this context, we have implemented three SIEM tools and compared them through the proposed criteria, in order to demonstrate how much information these criteria can provide on each SIEM tool, and thus contributing in decision making for choosing the ideal SOC for a specific environment.
引用
收藏
页数:6
相关论文
共 50 条
  • [41] Contextual Security with IF-MAP
    Lakbabi, Abdelmajid
    Orhanou, Ghizlane
    El Hajji, Said
    INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2014, 8 (05): : 427 - 438
  • [42] SIEM-Platform for Research and Educational Tasks on Processing of Security Information Events
    Mitkovskiy, Alexey
    Ponomarev, Andrey
    Proletarskiy, Andrey
    NEW TECHNOLOGIES AND REDESIGNING LEARNING SPACES, VOL III, 2019, : 48 - 56
  • [43] Complementary test selection criteria for model-based testing of security components
    Julien Botella
    Jean-François Capuron
    Frédéric Dadeau
    Elizabeta Fourneret
    Bruno Legeard
    Florence Schadle
    International Journal on Software Tools for Technology Transfer, 2019, 21 : 425 - 448
  • [44] Complementary test selection criteria for model-based testing of security components
    Botella, Julien
    Capuron, Jean-Francois
    Dadeau, Frederic
    Fourneret, Elizabeta
    Legeard, Bruno
    Schadle, Florence
    INTERNATIONAL JOURNAL ON SOFTWARE TOOLS FOR TECHNOLOGY TRANSFER, 2019, 21 (04) : 425 - 448
  • [45] Facing Cyber-Physical Security Threats by PSIM-SIEM Integration
    Frattini, Flavio
    Giordano, Ugo
    Conti, Vincenzo
    2019 15TH EUROPEAN DEPENDABLE COMPUTING CONFERENCE (EDCC 2019), 2019, : 83 - 88
  • [46] STUDYING SIEM IN HIGHER EDUCATION IS AN IMPORTANT TASK IN TRAINING CYBER SECURITY PROFESSIONALS
    Dimitrov, Willian
    14TH INTERNATIONAL TECHNOLOGY, EDUCATION AND DEVELOPMENT CONFERENCE (INTED2020), 2020, : 348 - 357
  • [47] Efficient Contextual Unfolding
    Rodriguez, Cesar
    Schwoon, Stefan
    Baldan, Paolo
    CONCUR 2011: CONCURRENCY THEORY, 2011, 6901 : 342 - +
  • [48] SIMPLE CRITERIA FOR OPTIMAL PORTFOLIO SELECTION - TRACING OUT EFFICIENT FRONTIER
    ELTON, EJ
    GRUBER, MJ
    PADBERG, MW
    JOURNAL OF FINANCE, 1978, 33 (01): : 296 - 302
  • [49] Efficient information-based criteria for model selection in quantile regression
    Wooyoung Shin
    Mingang Kim
    Yoonsuh Jung
    Journal of the Korean Statistical Society, 2022, 51 : 245 - 281
  • [50] Efficient information-based criteria for model selection in quantile regression
    Shin, Wooyoung
    Kim, Mingang
    Jung, Yoonsuh
    JOURNAL OF THE KOREAN STATISTICAL SOCIETY, 2022, 51 (01) : 245 - 281
12345