Browse wiki

From Navigators

Jump to: navigation, search
Publication:PRDC19 slicer
Abstract Security Information and Event Management Security Information and Event Management (SIEM) systems have been adopted by organizations to enable holistic monitoring of malicious activities in their IT infrastructures. SIEMs receive events from diverse devices of the organization’s IT infrastructure (e.g., servers, firewalls, IDS), correlate these events, and present reports for security analysts. Given the large number of events collected by SIEMs, it is costly to store such data for long periods. Since organizations store a relatively limited time-frame of events, the forensic analysis capabilities severely become reduced. We present SLICER an archival system for long-term storage that makes use of a multi-cloud-based storage system to guarantee data security, low cost and “infinite” scalability, and ensures cost-effectiveness by grouping events in blocks and using indexing techniques to recover them. The system was evaluated using a real dataset and the results show that it is significantly more cost-efficient than competing alternatives. ost-efficient than competing alternatives.
Author Adriano Serckumecka + , Ibéria Medeiros + , Bernardo Ferreira + , Alysson Bessani +
Booktitle In Proceedings of the IEEE Pacific Rim International Symposium on Dependable Computing (PRDC)  +
Key PRDC19 slicer  +
Month dec  +
NumPubDate 2,019.12  +
Project Project:DiSIEM +
ResearchLine Fault and Intrusion Tolerance in Open Distributed Systems (FIT) +
Title SLiCER: Safe Long-term Cloud Event Archival  +
Type inproceedings  +
Year 2019  +
Has improper value forThis property is a special property in this wiki. Url  +
Categories Publication  +
Modification dateThis property is a special property in this wiki. 18 September 2019 00:39:57  +
hide properties that link here 
  No properties link to this page.


Enter the name of the page to start browsing from.
Personal tools
Navigators toolbox