Abstract

Information communication technologies are evolving rapidly and have huge impact on everyday life. This does not come without dangers, i.e., it is actively followed by wide range of malicious activities that impact the companies forcing them to protect their information at all costs. Cyber attacks today are usually consisting of multiple carefully planned hardly detectable steps causing severe damage to companies. This paper examines the capability of security information and event management (SIEM) system with applied partial rules in detecting the multi-step attacks. Fine tuning was focused on detecting partial attack patterns that were important and specific to environment and positive results were gained. The results show that when using the partial rule approach in SIEM for incident detection, the number of detected advanced multistage cyber attacks has increased, thereby contributing to the overall security in cyber space.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A novel security information and event management system for enhancing cyber security in a hydroelectric dam
Cesario Di Sarno ... Marco Vallini
International Journal of Critical Infrastructure Protection | VOL. 13
Cesario Di Sarno, et. al.Cesario Di Sarno ... Marco Vallini
18 Mar 2016
Comment on: “Radial head replacement in adults with recent fractures” published by N. Bonnevialle et al. in Orthopaedics & Traumatology: Surgery & Research 2016;102(1 Suppl):S69–79
L Cheng ... H.-T Long
Revue de Chirurgie Orthopedique et Reparatrice de l'appareil moteur | VOL. 102
L Cheng, et. al.L Cheng ... H.-T Long
25 Oct 2016
Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures.
Gustavo González-Granadillo ... Susana González-Zarzosa
Sensors (Basel, Switzerland) | VOL. 21
Gustavo González-Granadillo, et. al.Gustavo González-Granadillo ... Susana González-Zarzosa
12 Jul 2021
The Operational Role of Security Information and Event Management Systems
Sandeep Bhatt ... Pratyusa K Manadhata
IEEE security & privacy | VOL. 12
Sandeep Bhatt, et. al.Sandeep Bhatt ... Pratyusa K Manadhata
01 Sep 2014
View more papers

More From: International Journal of Security and Networks

Paper Title
Journal
Date
Author
A social network security user recommendation algorithm based on community user emotions
Huajin Liu ... Houyuan Zhang
International Journal of Security and Networks | VOL. -
Huajin Liu, et. al.Huajin Liu ... Houyuan Zhang
01 Jan 2024
Enabling secure modern web browsers against cache-based timing attacks
Sangeetha Ganesan
International Journal of Security and Networks | VOL. 19
Sangeetha GanesanSangeetha Ganesan
01 Jan 2024
Secure identity-based encryption: overcoming the key escrow challenge
Khaleda Afroaz ... N Rukma Rekha
International Journal of Security and Networks | VOL. -
Khaleda Afroaz, et. al.Khaleda Afroaz ... N Rukma Rekha
01 Jan 2024
Generalized Secret Sharing Scheme for Non-monotone Access Structures using MDS Codes
Subba Rao Y.V ... Shivakrishna Nallabothu
International Journal of Security and Networks | VOL. -
Subba Rao Y.V, et. al.Subba Rao Y.V ... Shivakrishna Nallabothu
01 Jan 2024
View more papers