Publication:
IoTBlockSIEM for information security incident management in the internet of things ecosystem

Дата
2020
Авторы
Miloslavskaya, N.
Tolstoy, A.
Journal Title
Journal ISSN
Volume Title
Издатель
Научные группы
Организационные подразделения
OrgUnit Logo
Организационная единица
Институт интеллектуальных кибернетических систем
Цель ИИКС и стратегия развития - это подготовка кадров, способных противостоять современным угрозам и вызовам, обладающих знаниями и компетенциями в области кибернетики, информационной и финансовой безопасности для решения задач разработки базового программного обеспечения, повышения защищенности критически важных информационных систем и противодействия отмыванию денег, полученных преступным путем, и финансированию терроризма.
Выпуск журнала
Аннотация
The Internet unfolded enormous opportunities to the modern computing world where not only humans but also computers and machines, as well as any tiny sensing devices, can communicate and collaborate. The Internet of Things (IoT) is still a new concept in its early stages after 20 years of successful usage in various application domains. Nowadays, the "Internet of Things Ecosystem" term is being used more often that emphasizes its complex internal structure and functionality. Based on the available standards on the IoT's generalized architecture and reference model, the IoT ecosystem is presented as a security object to be protected. Numerous security controls, collecting raw data for complex and multi-stage processing and further detection of events related to information security (IS), are located on its layers. The IS incident management process with different routine actions for the IoT ecosystems needs automation, for which Security Information and Event Management (SIEM) systems are the best applicable solutions. But modern challenges require modifying two previously known generations of these systems, especially for the IoT ecosystems. A new blockchain-based system called the IoTBlockSIEM is proposed to solve this problem. An example of constructing transactions in the IoTBlockSIEM for the case of its use in managing IS incidents in the IoT ecosystem is provided. Further research concludes the article.
Описание
Ключевые слова
Цитирование
Miloslavskaya, N. IoTBlockSIEM for information security incident management in the internet of things ecosystem / Miloslavskaya, N, Tolstoy, A // Cluster Computing. - 2020. - 10.1007/s10586-020-03110-5
URI
https://www.doi.org/10.1007/s10586-020-03110-5
 https://www.scopus.com/record/display.uri?eid=2-s2.0-85087287117&origin=resultslist
 http://gateway.webofknowledge.com/gateway/Gateway.cgi?GWVersion=2&SrcAuth=Alerting&SrcApp=Alerting&DestApp=WOS_CPL&DestLinkType=FullRecord&UT=WOS:000544156100001
 https://openrepository.mephi.ru/handle/123456789/21989
Коллекции
Публикации