Open Source Security Information Management system supporting IT security audit

Author

Hermanowski, Damian

Author_Institution

C4I Syst. Dept., Mil. Commun. Inst., Zegrze, Poland

fYear

2015

fDate

24-26 June 2015

Firstpage

336

Lastpage

341

Abstract

Nowadays, assuring security of computer systems becomes difficult due to the rapid development of IT technologies, even in household appliances. This article shows exemplary model of the IT security monitoring and management system. Proposed solution is aimed to collect security events, analyse them, assess the risk they bring and inform the administrator about them in order to take appropriate decision to mitigate potential security incident. This system is based on open source code toolset. This toolset was studied, tested and examined in the context of the whole system. These tools were configured and an additional code was developed in order to achieve synergy effect from adopting various techniques aimed at network monitoring and system security.

Keywords

auditing; information management; public domain software; security of data; IT security audit; IT security management system; IT security monitoring; IT technologies; computer systems; household appliances; network monitoring; open source code toolset; open source security information management system; security events; security incident; synergy effect; system security; Correlation; Databases; Malware; Monitoring; Ports (Computers); Servers; IT audit; OSSIM; SIEM; computer security; monitoring; open source;

fLanguage

English

Publisher

ieee

Conference_Titel

Cybernetics (CYBCONF), 2015 IEEE 2nd International Conference on

Conference_Location

Gdynia

Print_ISBN

978-1-4799-8320-9

Type

conf

DOI

10.1109/CYBConf.2015.7175956

Filename

7175956