A framework for intelligent DDoS attack detection and response using SIEM and ontology
SD Çakmakçı, H Hutschenreuter… - 2021 IEEE …, 2021 - ieeexplore.ieee.org
… to keep the system stable. We … ontologies for the organization, IT, security, and DDoS attacks.
We demonstrate the connections of these ontologies with the inference system and a SIEM. …
We demonstrate the connections of these ontologies with the inference system and a SIEM. …
A semantic model for security evaluation of information systems
E Doynikova, A Fedorchenko… - … of Cyber Security …, 2020 - journals.riverpublishers.com
… will form the basis of the new generation SIEM systems. … the security framework for decision
support to increase the … ontology is the basis of our approach to security assessment and …
support to increase the … ontology is the basis of our approach to security assessment and …
Design and prototype validation of a decision support system for cybersecurity incident mitigation
F Ponzetta - 2022 - webthesis.biblio.polito.it
… Moreover a set of security metrics will be defined to characterize the potential impact (in …
• implement a decision support system based on ontologies, semantic reasoning and SWRL …
• implement a decision support system based on ontologies, semantic reasoning and SWRL …
An ontology to promote interoperability between cyber-physical security systems in critical infrastructures
… detection systems through SIEM, ONTO-SIEM was … ontology focused on cybersecurity
assessment metrics was proposed in [21], facilitating security assessment and decision making…
assessment metrics was proposed in [21], facilitating security assessment and decision making…
Systematic review of SIEM technology: SIEM-SC birth
JM López Velásquez, SM Martínez Monterrubio… - … of Information Security, 2023 - Springer
… monitored system [22], and the calculation of security metrics is … However, the new
proposed SIEM ontology with which to … as part of the security evaluation of the overall attack. …
proposed SIEM ontology with which to … as part of the security evaluation of the overall attack. …
Ontology-Based metrics computation for system security assurance evaluation
SF Wen, B Katt - Journal of Applied Security Research, 2024 - Taylor & Francis
… security assurance methodologies, security assessment techniques, as well as ontology-based
security metrics … support in SIEM systems. In 2013 International Conference on Availability…
security metrics … support in SIEM systems. In 2013 International Conference on Availability…
Ontology-based cyber risk monitoring using cyber threat intelligence
Y Merah, T Kenaza - … Conference on Availability, Reliability and Security, 2021 - dl.acm.org
… In this work, the proposed ontology, baptized “ONTO-SIEM”, uses concepts from Intrusion …
needs to be completed by other concepts to give more capabilities such as security metrics to …
needs to be completed by other concepts to give more capabilities such as security metrics to …
[HTML][HTML] Security information and event management (SIEM): analysis, trends, and usage in critical infrastructures
G González-Granadillo, S González-Zarzosa, R Diaz - Sensors, 2021 - mdpi.com
… metrics that allow SOCs to make decisions supported by … and security evaluation in SIEM
systems applicable for future … The ontology of metrics for security evaluation and decision …
systems applicable for future … The ontology of metrics for security evaluation and decision …
An ontology-based security risk management model for information systems
… A decision support system was proposed based on the Risk-Adaptive Management in Resilient
Environments with Security (… can be integrated within SIEM frameworks to enhance them. …
Environments with Security (… can be integrated within SIEM frameworks to enhance them. …
A threshold-based, real-time analysis in early detection of endpoint anomalies using SIEM expertise
S Eswaran, A Srinivasan, P Honnavalli - Network Security, 2021 - magonlinelibrary.com
… system for analysis. Most SIEM systems have a hierarchical structure of multiple collection
agents, working to collect security-related events from network equipment, servers, end-user …
agents, working to collect security-related events from network equipment, servers, end-user …