• English
  • Deutsch
  • Log In
    Password Login
    Research Outputs
    Fundings & Projects
    Researchers
    Institutes
    Statistics
Repository logo
Fraunhofer-Gesellschaft
  1. Home
  2. Fraunhofer-Gesellschaft
  3. Konferenzschrift
  4. Model-based security event management
 
  • Details
  • Full
Options
2012
Conference Paper
Title

Model-based security event management

Abstract
With the growing size and complexity of current ICT infrastructures, it becomes increasingly challenging to gain an overview of potential security breaches. Security Information and Event Management systems which aim at collecting, aggregating and processing security-relevant information are therefore on the rise. However, the event model of current systems mostly describes network events and their correlation, but is not linked to a comprehensive security model, including system state, security and compliance requirements, countermeasures, and affected assets. In this paper we introduce a comprehensive semantic model for security event management. Besides the description of security incidents, the model further allows to add conditions over the system state, define countermeasures, and link to external security models.
Author(s)
Schütte, Julian
Rieke, Roland  
Winkelvos, Timo
Mainwork
Computer network security. 6th International Conference on Mathematical Methods, Models and Architectures for Computer Network Security, MMM-ACNS 2012  
Conference
International Conference on Mathematical Methods, Models and Architectures for Computer Network Security (MMM-ACNS) 2012  
DOI
10.1007/978-3-642-33704-8_16
Language
English
Fraunhofer-Institut für Sichere Informationstechnologie SIT  
Keyword(s)
  • SIEM

  • monitoring

  • model-based security

  • ontology

  • security strategy meta model

  • security information and event management

  • complex event processing

  • Cookie settings
  • Imprint
  • Privacy policy
  • Api
  • Contact
© 2024