Security Mechanisms and Log Correlation Systems
Abstract:
This study proposes several security measures to protect the integrity of the information and avoid threats using in-depth defense mechanisms against cyber threats, generally organizations do not have security mechanisms at the depth level, integrating centralized monitoring tools and prevention against computer attacks based on log correlation systems. The methodology used for this research was PPDIOO, the same one that contemplates the phases of: Preparation, Planning, Design, Implementation, Operation and Optimization, applied to the Security Information and Event Management (SIEM) event correlation systems using the AlienVault system. OSSIM (Open Source Security Information Manager), which allows comparing, integrating and managing security incidents in real time, implementing defense strategies. As a result of the investigation, automated components are established to strengthen the network infrastructure against computer attacks, proposing five possible scenarios that allowed validating the information presented, as a conclusion the use of the AlienVault OSSIM tool, made it possible to improve the cybersecurity mechanisms guaranteeing the integrity, security, and availability of information, preventing anomalies in the network and failures in its services, mechanisms combined with different integrated monitoring and detection tools allowing centralized security management.
Año de publicación:
2023
Keywords:
- CYBERSECURITY
- Cybersecurity strategy
- log
- Cyberspace
- SIEM
Fuente:
google
scopusTipo de documento:
Conference Object
Estado:
Acceso restringido
Áreas de conocimiento:
- Red informática
- Ciencias de la computación
Áreas temáticas:
- Programación informática, programas, datos, seguridad
- Funcionamiento de bibliotecas y archivos
- Criminología
