New methods to protect our network systems
Keywords:
network, security, CIFAbstract
In the last few years the number of security incidents has significantly increased. There were twice as much DDoS attacks than before in the previous year, and this number is still steadily growing. Attaining a reliable defense is growing into a more demanding task as the array of threats is continuously widening. Security Information and Event Management systems (SIEM) is attempting to deal with this problem. The goal of this system is to function by warnings, alarms, and logs based on software and hardware actions, and to gather and analyze this data in real time, ensuring that security related acivities and events are resolved. Major functions of SIEM systems are:
Log consolidation, log management, log normalization, correlation, incident management, reporting , asset management. The main goal of this paper is to offer a brief overview of an open source implementation of a SIEM system. Different lists exist about hostile IP addresses or signatures of malicious code across the internet. Collective Intelligence Framework (CIF) is a framework which’s purpose is to gather this data. If collected, then this data is stored in a database, and an interface is provided for external programs to question the data, which ensures that they can handle the actual network pertinently. A reliable real-time first line of defense can be maintained as a result.
References
CISCO 2016 Annual Security Report. Cisco, January 2016.
Barabási, Albert-László – Réka Albert, [(1999]: ): Emergence of scaling in random networks, . Science, 286: 509–512.
Cobb, Stephen ([2015]: ): VB2015 paper – Sizing cybercrime: incidents and accidents, hints and allegations, . Virus Bulletin.
ARNAV Prabodh Joshi ([2013]: ): Linked Data for Software Security Concepts and Vulnerability Descriptions. 2013 – DTIC Document, pp 8–98.
Su Zhang, – Doina Caragea, – Xinming Ou, ([2011] ): An empirical study on using the national vulnerability database to predict software vulnerabilities, . DEXA 2011, Part I, LNCS 6860, pp. 217–231.
PATRICK Bedwell, P. ([2014] ): Finding a new approach to SIEM to suit the SME environment, , Network Security, 7: 12–16.
Raheel Hassan Syed, – Jasmina Pazardzievska, ([2012] ): Fast attack detection using correlation and summarizing of security alerts in grid computing networks, . Springer Science+Business Media, LLC: 804–827.
JULIEN BOURGEOIS (1999): Emergence of scaling in random networks. Science, 286: 509–512.
VALERIO Formicola, - ANTONIO Di Pietro, – ABDULLAH Alsubaie, – SALVATORE D’antonio, – JOSE Marti, [(2014] ): Assessing the impact of cyber attact on wireless sensornodes that monitor independent physical systems, . IFIP International Federation for Information Processing, pp 213-229.
GUILLERMO Suarez-Tangil – ESTHER Palomar, ARTURO Ribagorda, IVAN Sanz, (2015): Providing SIEM systems with self-adaptation, Information Fusion, 21: 145–158.
JAVIER Toret, – ANTONIO Calleja, (2014): Decentralised citizens engagement technologies. D2.1 Collective intelligence framework. UOC, 2–89.
Sabari Girish Nair, – Dr.Priti Puri, [2015): Open Source Threat Intelligence System. International Journal of Research, 2(4): 360–363.
Downloads
Published
Issue
Section
License
Copyright (c) 2017 opyright © [year] The Author(s). Published by AJ-RED under the Creative Commons Attribution 4.0 International License (CC BY 4.0).
This work is licensed under a Creative Commons Attribution 4.0 International License.
Articles published in AJ-RED are made freely available under the Creative Commons Attribution 4.0 International License (CC BY 4.0). Under this license, anyone may share, copy, redistribute, adapt, and build upon the published work for any purpose, including commercial use, provided that appropriate credit is given to the original authors, the title of the work and the journal are cited, and a link to the license is provided. Authors retain full copyright of their work. No permission is required from the authors or the publisher for uses permitted by the license. For the full terms of the CC BY 4.0 license, see: https://creativecommons.org/licenses/by/4.0/
