• DocumentCode
    2427673
  • Title

    SEC - a lightweight event correlation tool

  • Author

    Vaarandi, Risto

  • Author_Institution
    Dept. of Comput. Eng., Tallinn Tech. Univ., Estonia
  • fYear
    2002
  • fDate
    2002
  • Firstpage
    111
  • Lastpage
    115
  • Abstract
    Event correlation has become one of the most important techniques in today´s network management, and there is a clear trend to extend its use to other application domains as well. Unfortunately, existing event correlation systems are often platform-dependent and heavyweight solutions that have complicated design, being therefore difficult to deploy and maintain, and requiring extensive user training. Their complexity and size makes them often unfeasible to apply for smaller networks and for smaller event correlation tasks. Also, some systems are cumbersome to use outside the domain of network fault management. In addition, commercial event correlation products tend to be quite expensive. In this paper the author presents a lightweight, open-source, and platform independent tool for rule-based event correlation called SEC (simple event correlator), and describes its application experience.
  • Keywords
    computer network management; correlation methods; SEC; lightweight event correlation tool; network fault management; network management; open-source tool; platform independent tool; rule-based event correlation; simple event correlator; Computer network management; Computer networks; Engineering management; Event detection; Humans; Intrusion detection; Monitoring; Open source software; Prototypes; Search engines;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    IP Operations and Management, 2002 IEEE Workshop on
  • Print_ISBN
    0-7803-7658-7
  • Type

    conf

  • DOI
    10.1109/IPOM.2002.1045765
  • Filename
    1045765
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2427673