Security operation center implementation on OpenStack

机译：在OpenStack上实施安全运营中心

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Information security management is a complicated task in cloud environment. Cloud service layers and multi-tenant architecture have created a complicated environment for developing and managing a monitoring and incident response environment in organizations. The main goal of this paper is to receive and analyze events from OpenStack environment. Events and system logs are received from OpenStack environment. The organization SOC must be customized to receive and detect cloud specific attacks. In this paper, we customize SOC for OpenStack environment to detect cloud specific attacks. The customized SOC receives and normalizes OpenStack alerts. We have developed new correlation rules and response scenarios for these alerts. We have presented evaluation results of customized SOC development in OpenStack. The customized SOC can detect OpenStack and hypervisor based attacks.

机译：信息安全管理是云环境中的一项复杂任务。云服务层和多租户架构已经创建了一个复杂的环境，用于开发和管理组织中的监视和事件响应环境。本文的主要目标是从OpenStack环境接收和分析事件。事件和系统日志是从OpenStack环境接收的。必须自定义组织SOC，以接收和检测特定于云的攻击。在本文中，我们为OpenStack环境定制了SOC，以检测特定于云的攻击。定制的SOC接收并标准化OpenStack警报。我们已经为这些警报开发了新的关联规则和响应方案。我们已经介绍了OpenStack中定制的SOC开发的评估结果。定制的SOC可以检测基于OpenStack和管理程序的攻击。

著录项

来源
《International Symposium on Telecommunications》|2016年|766-770|共5页
会议地点
作者
Tala Tafazzoli; Hossein Gharaee Garakani;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Security; Cloud computing; Computer architecture; Organizations; Correlation; Monitoring; Knowledge based systems;

机译：安全性;云计算;计算机体系结构;组织;关联;监控;基于知识的系统;

相似文献

外文文献
中文文献
专利

1. Operational security, threat intelligence & distributed computing: the WLCG Security Operations Center Working Group [J] . David Crooks, Liviu Valsan, Kashif Mohammad, EPJ Web of Conferences . 2019,第1期

机译：运营安全，威胁情报和分布式计算：WLCG安全运营中心工作组
2. DENSO and NTT Communications Starts Validating Jointly Developed Vehicle Security Operation Center Technology to Realize Resilient Security Solutions for Connected Cars [J] . Japan Telecom . 2019,第12期

机译：Denso和NTT通信开始验证共同开发的车辆安全操作中心技术，实现连通汽车的弹性安全解决方案
3. POSITIONING CYBERSECURITY IN THE C-SUITE: HOW TO BUILD A JOINT SECURITY OPERATIONS CENTER [J] . DAN SHOEMAKER, GREGORY LAIDLAW, ANNE KOHNKE EDPACS: The EDP audit, control and security newsletter . 2019,第6期

机译：定位Cybersecurity在C-Suite中：如何建立联合安全运营中心
4. Security operation center implementation on OpenStack [C] . Tala Tafazzoli, Hossein Gharaee Garakani International Symposium on Telecommunications . 2016

机译：Security操作中心在OpenStack上实现
5. How to Communicate to the C-Level Suite the Need for Security Operations Centers in Fortune 1000 Environments [D] . Fearer, Mark D. 2020

机译：如何与C-Level套件进行通信，在Fortune 1000环境中需要对安全运营中心的需求
6. Contributions of the US Centers for Disease Control and Prevention in Implementing the Global Health Security Agenda in 17 Partner Countries [O] . Arthur G. Fitzmaurice, Michael Mahar, Leah F. Moriarty, 2017

机译：美国疾病控制与预防中心对在17个合作伙伴国家实施全球健康安全议程的贡献
7. Operational security, threat intelligence distributed computing: the WLCG Security Operations Center Working Group [O] . David Crooks, Liviu Vâlsan, Kashif Mohammad, 2019

机译：运营安全，威胁情报和分布式计算：WLCG安全运营中心工作组

Security operation center implementation on OpenStack

摘要

著录项

相似文献

相关主题

期刊订阅