Add to ORKGDiese Arbeit leitet eine skalierbare Architektur einer Alarmkorrelation zum Einsatz in einem SIEM-System her und implementiert diese prototypisch. Das entwickelte System beinhaltet Möglichkeiten zur flexiblen Konfiguration, um für verschiedene Einsatzgebiete nutzbar zu sein.This thesis introduces a scalable architecture of an alert correlation. The resulting prototype can be configured and thus be used flexibly, depending on the requirements of the operating environment
Early warning systems are supposed to deliver information about an emerging threat in order to allow...
Abstract—Alert correlation is the process of analyzing, relating and fusing the alerts generated by ...
This work deals with the universal system which was basically developed for usage in the field of in...
Currently, in environmental systems, and disaster management in particular, we are witnessing a gene...
As in many other domains we witness in disaster management a general shift from isolated monolithic ...
International audienceCurrent Security Information and Event Management systems (SIEMs) constitute t...
Network alert correlation has been a topic of interest to the research commu-nity for at least 20 ye...
This thesis proposes a general model for telecommunications networks and, from this model, it propos...
International audienceIn distributed systems and in particular in industrial SCADA environments, ale...
An Intrusion Detection System (IDS) is one of the major techniques for securing information systems ...
International audienceIn this paper we develop an alert correlation framework specifically tailored ...
Abstract—Intrusion Detection Systems (IDS) have been widely deployed in practice for detecting malic...
The correlation of several events in a period of time is a necessity for a threat detection platform...
Alert correlation is a process that analyzes the raw alerts produced by one or more intrusion detect...
GesamtdissertationNach wie vor existiert ein Bedarf nach einer sicheren Überwachungsmöglichkeit von ...
Early warning systems are supposed to deliver information about an emerging threat in order to allow...
Abstract—Alert correlation is the process of analyzing, relating and fusing the alerts generated by ...
This work deals with the universal system which was basically developed for usage in the field of in...
Currently, in environmental systems, and disaster management in particular, we are witnessing a gene...
As in many other domains we witness in disaster management a general shift from isolated monolithic ...
International audienceCurrent Security Information and Event Management systems (SIEMs) constitute t...
Network alert correlation has been a topic of interest to the research commu-nity for at least 20 ye...
This thesis proposes a general model for telecommunications networks and, from this model, it propos...
International audienceIn distributed systems and in particular in industrial SCADA environments, ale...
An Intrusion Detection System (IDS) is one of the major techniques for securing information systems ...
International audienceIn this paper we develop an alert correlation framework specifically tailored ...
Abstract—Intrusion Detection Systems (IDS) have been widely deployed in practice for detecting malic...
The correlation of several events in a period of time is a necessity for a threat detection platform...
Alert correlation is a process that analyzes the raw alerts produced by one or more intrusion detect...
GesamtdissertationNach wie vor existiert ein Bedarf nach einer sicheren Überwachungsmöglichkeit von ...
Early warning systems are supposed to deliver information about an emerging threat in order to allow...
Abstract—Alert correlation is the process of analyzing, relating and fusing the alerts generated by ...
This work deals with the universal system which was basically developed for usage in the field of in...