Using Security Logs for Collecting and Reporting Technical Security Metrics

机译：使用安全日志收集和报告技术安全度量

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

During recent years, establishing proper metrics for measuring system security has received increasing attention. Security logs contain vast amounts of information which are essential for creating many security metrics. Unfortunately, security logs are known to be very large, making their analysis a difficult task. Furthermore, recent security metrics research has focused on generic concepts, and the issue of collecting security metrics with log analysis methods has not been well studied. In this paper, we will first focus on using log analysis techniques for collecting technical security metrics from security logs of common types (e.g., Network IDS alarm logs, workstation logs, and Net flow data sets). We will also describe a production framework for collecting and reporting technical security metrics which is based on novel open-source technologies for big data.

机译：近年来，建立用于度量系统安全性的适当度量标准已受到越来越多的关注。安全日志包含大量信息，这些信息对于创建许多安全指标至关重要。不幸的是，已知安全日志非常大，使其分析成为一项艰巨的任务。此外，最近的安全性度量研究集中在通用概念上，并且尚未很好地研究使用日志分析方法收集安全性度量的问题。在本文中，我们将首先专注于使用日志分析技术从常见类型的安全日志（例如，网络IDS警报日志，工作站日志和网络流数据集）中收集技术安全指标。我们还将描述一个用于收集和报告技术安全性指标的生产框架，该框架基于大数据的新型开源技术。

著录项

来源
《IEEE Military Communications Conference》|2014年|294-299|共6页
会议地点
作者
Vaarandi R.; Pihelgas M.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Big Data; computer network security; big data; log analysis methods; log analysis techniques; open source technology; security logs; technical security metric collection; technical security metric reporting; Correlation; Internet; Measurement; Monitoring; Peer-to-peer computing; Security; Workstations; security log analysis; security metrics;

机译：大数据;计算机网络安全;大数据;日志分析方法;日志分析技术;开源技术;安全日志;技术安全度量收集;技术安全度量报告;相关性;互联网;度量;监控;对等计算;安全性;工作站;安全日志分析;安全性指标;

相似文献

外文文献
中文文献
专利

1. Raz-Lee Security Suite Now Supports QShell and PASE Logging, Reporting, Alerting [J] . System iNEWS . 2012,第2期

机译：Raz-Lee安全套件现在支持QShell和PASE日志记录，报告，警报
2. Assembling cybersecurity: The politics and materiality of technical malware reports and the case of Stuxnet [J] . Stevens Clare Contemporary security policy . 2020,第1期

机译：组装网络安全：技术恶意软件报告的政治和唯物性以及STUXNET的情况
3. National Security Agency Chief Reports Technical' Glitch, Rogue Analyst [J] . Sebastian Sprenger Inside the pentagon . 2014,第40期

机译：国家安全局局长报告技术小故障，流氓分析师
4. Using Security Logs for Collecting and Reporting Technical Security Metrics [C] . Vaarandi R., Pihelgas M. IEEE Military Communications Conference . 2014

机译：使用安全日志来收集和报告技术安全指标
5. Security-Policy Analysis with eXtended Unix Tools Dartmouth Computer Science Technical Report TR2013-728. [D] . Weaver, Gabriel A. 2013

机译：使用扩展的Unix工具进行安全策略分析Dartmouth计算机科学技术报告TR2013-728。
6. Taking Risks With Cybersecurity: Using Knowledge and Personal Characteristics to Predict Self-Reported Cybersecurity Behaviors [O] . Shelia M. Kennison, Eric Chan-Tin 2020

机译：通过网络安全冒险：利用知识和个人特征来预测自我报告的网络安全行为
7. Building capability from the technical revolution that has happened : report of the Belfer Center Conference on National Security Transformation / John P. White, John Deutch ; cosponsored by the Strategic Studies Institute, Harvard University's Kennedy School of Government and the Dwight D. Eisenhower National Security Series. [O] . White, John P. 2003

机译：从已经发生的技术革命建设能力：对国家安全转型Belfo会议中心的报告/约翰·p·怀特，约翰·多伊奇;通过战略研究所，政府的哈佛大学肯尼迪学院和艾森豪威尔国家安全系列共同主办。

Using Security Logs for Collecting and Reporting Technical Security Metrics

摘要

著录项

相似文献

相关主题

期刊订阅