• DocumentCode
    588747
  • Title

    Research on System Logs Collection and Analysis Model of the Network and Information Security System by Using Multi-agent Technology

  • Author

    Shi Shengyan ; Shen Xiaoliu ; Zhao Jianbao ; Ma Xinke

  • Author_Institution
    Sch. of Control & Comput. Eng., North China Electr. Power Univ., Beijing, China
  • fYear
    2012
  • fDate
    2-4 Nov. 2012
  • Firstpage
    23
  • Lastpage
    26
  • Abstract
    In order to realize the full rang of information security, a variety of network equipment, safe equipment have been applied to deal with all aspects of information security and protection by many enterprise. These devices, systems produce a lot of security event log in the network security protection, and these event log data format are different, and different safety equipment may generate the same alerts logs, not only resulting in generating redundant events, but not conducive to the next work of network security situational awareness. Therefore, this paper proposed a method by using the multi-agent technology to collect and analysis the log data generated by network devices and security devices, and then generating a fixed-format data structure and building the log collection and analysis systems to facilitate the later maintenance and use of data.
  • Keywords
    data analysis; data structures; multi-agent systems; security of data; system monitoring; event log data format; fixed-format data structure generation; information protection; information security system; log data analysis; log data collection; multiagent technology; network devices; network equipment; network security protection; network security system; safety equipment; security devices; security event log; system logs analysis model; system logs collection model; Analytical models; Databases; Educational institutions; Information security; Safety; Log collection agent; Multi-agent technology; log collection and analysis system;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Multimedia Information Networking and Security (MINES), 2012 Fourth International Conference on
  • Conference_Location
    Nanjing
  • Print_ISBN
    978-1-4673-3093-0
  • Type

    conf

  • DOI
    10.1109/MINES.2012.181
  • Filename
    6405622