Přehled o publikaci
2018
Toward Real-time Network-wide Cyber Situational Awareness
JIRSÍK, Tomáš and Pavel ČELEDABasic information
Original name
Toward Real-time Network-wide Cyber Situational Awareness
Authors
JIRSÍK, Tomáš and Pavel ČELEDA
Edition
Taipei, Taiwan, NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium, p. 1-7, 7 pp. 2018
Publisher
IEEE
Other information
Language
English
Type of outcome
Proceedings paper
Confidentiality degree
is not subject to a state or trade secret
Publication form
electronic version available online
References:
Marked to be transferred to RIV
Yes
RIV identification code
RIV/00216224:14610/18:00106893
Organization
Ústav výpočetní techniky – Repository – Repository
ISBN
978-1-5386-3416-5
UT WoS
EID Scopus
Keywords in English
cyber; situation awareness; real-time; Stream4Flow
Links
VI20162019014, research and development project.
Changed: 31/3/2023 04:06, RNDr. Daniel Jakubík
Abstract
In the original language
In today's complex computer networks, we are constantly facing a risk of data loss, system compromise, or intellectual property theft. The complexity of the networks hinders their effective defense. A Network-wide Cyber Situational Awareness (NwCSA) has been introduced to assist a network security administrator with network security. The concept, however, faces several challenges that hinder an efficient application of the NwCSA in a real-world environment. The challenges include the overload of raw data, low speed of reaction, and a lack of context and unified view on a network. In this paper, we present a novel framework that faces above mentioned challenges. The framework leverages a distributed data stream processing system and methods for real-time big data processing. The framework is evaluated with respect to stated requirements on systems for NwCSA. Moreover, we present a prototype framework implementation and provide lessons learned from its real-world deployment.
