安全运营中心不安全大数据处理分类

2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW) Pub Date : 2016-08-01 DOI:10.1109/W-FiCloud.2016.42

N. Miloslavskaya, A. Tolstoy, S. Zapechnikov

{"title":"安全运营中心不安全大数据处理分类","authors":"N. Miloslavskaya, A. Tolstoy, S. Zapechnikov","doi":"10.1109/W-FiCloud.2016.42","DOIUrl":null,"url":null,"abstract":"While the media constantly describes new attacks, the organizations seriously concerned about their business protection need to be prepared for such sophisticated attacks against their IT infrastructures. Hence a properly designed and formalized information security (IS) management system with Security Operations Center (SOC) as its centric part is required as never before. Among the most important documents for SOC there are two policies: IS policy and IS incident management policy. In order to create a truly effective policy it is vital to adequately describe SOC's operational environment from the IS viewpoint. The paper presents the most demand for these purposes classifications (taxonomy) of IS threats, vulnerabilities, attacks and IS incidents as the negative elements that should be avoided.","PeriodicalId":441441,"journal":{"name":"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)","volume":"2007 23","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"Taxonomy for Unsecure Big Data Processing in Security Operations Centers\",\"authors\":\"N. Miloslavskaya, A. Tolstoy, S. Zapechnikov\",\"doi\":\"10.1109/W-FiCloud.2016.42\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"While the media constantly describes new attacks, the organizations seriously concerned about their business protection need to be prepared for such sophisticated attacks against their IT infrastructures. Hence a properly designed and formalized information security (IS) management system with Security Operations Center (SOC) as its centric part is required as never before. Among the most important documents for SOC there are two policies: IS policy and IS incident management policy. In order to create a truly effective policy it is vital to adequately describe SOC's operational environment from the IS viewpoint. The paper presents the most demand for these purposes classifications (taxonomy) of IS threats, vulnerabilities, attacks and IS incidents as the negative elements that should be avoided.\",\"PeriodicalId\":441441,\"journal\":{\"name\":\"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)\",\"volume\":\"2007 23\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/W-FiCloud.2016.42\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/W-FiCloud.2016.42","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

摘要

当媒体不断地描述新的攻击时，认真关注其业务保护的组织需要为针对其IT基础设施的此类复杂攻击做好准备。因此，一个以安全运营中心(SOC)为中心的信息安全(IS)管理系统的设计和形式化是前所未有的。在SOC最重要的文档中有两个策略:IS策略和IS事件管理策略。为了创建一个真正有效的政策，从is的角度充分描述SOC的操作环境至关重要。本文提出了最需要这些目的的分类(分类法)的IS威胁，漏洞，攻击和IS事件作为应该避免的负面因素。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Taxonomy for Unsecure Big Data Processing in Security Operations Centers

While the media constantly describes new attacks, the organizations seriously concerned about their business protection need to be prepared for such sophisticated attacks against their IT infrastructures. Hence a properly designed and formalized information security (IS) management system with Security Operations Center (SOC) as its centric part is required as never before. Among the most important documents for SOC there are two policies: IS policy and IS incident management policy. In order to create a truly effective policy it is vital to adequately describe SOC's operational environment from the IS viewpoint. The paper presents the most demand for these purposes classifications (taxonomy) of IS threats, vulnerabilities, attacks and IS incidents as the negative elements that should be avoided.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)

自引率

0.00%

发文量