Introducing DINGfest: An architecture for next generation SIEM systems
Abstract
Isolated and easily protectable IT systems have developed into fragile and complex structures over the past years. These systems host manifold, flexible and highly connected applications, mainly in virtual environments. To ensure protection of those infrastructures, Security Incident and Event Management (SIEM) systems have been deployed. Such systems, however, suffer from many shortcomings such as lack of mechanisms for forensic readiness. In this extended abstract, we identify these shortcomings and propose an architecture which addresses them. It is developed within the DINGfest project, on which we report and for which we seek initial feedback from the community.
- Citation
- BibTeX
Menges, F., Böhm, F., Vielberth, M., Puchta, A., Taubmann, B., Rakotondravony, N. & Latzo, T.,
(2018).
Introducing DINGfest: An architecture for next generation SIEM systems.
In:
Langweg, H., Meier, M., Witt, B. C. & Reinhardt, D.
(Hrsg.),
SICHERHEIT 2018.
Bonn:
Gesellschaft für Informatik e.V..
(S. 257-260).
DOI: 10.18420/sicherheit2018_21
@inproceedings{mci/Menges2018,
author = {Menges, Florian AND Böhm, Fabian AND Vielberth, Manfred AND Puchta, Alexander AND Taubmann, Benjamin AND Rakotondravony, Noëlle AND Latzo, Tobias},
title = {Introducing DINGfest: An architecture for next generation SIEM systems},
booktitle = {SICHERHEIT 2018},
year = {2018},
editor = {Langweg, Hanno AND Meier, Michael AND Witt, Bernhard C. AND Reinhardt, Delphine} ,
pages = { 257-260 } ,
doi = { 10.18420/sicherheit2018_21 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
author = {Menges, Florian AND Böhm, Fabian AND Vielberth, Manfred AND Puchta, Alexander AND Taubmann, Benjamin AND Rakotondravony, Noëlle AND Latzo, Tobias},
title = {Introducing DINGfest: An architecture for next generation SIEM systems},
booktitle = {SICHERHEIT 2018},
year = {2018},
editor = {Langweg, Hanno AND Meier, Michael AND Witt, Bernhard C. AND Reinhardt, Delphine} ,
pages = { 257-260 } ,
doi = { 10.18420/sicherheit2018_21 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
Dateien | Groesse | Format | Anzeige | |
---|---|---|---|---|
sicherheit2018-21.pdf | 304.0Kb | View/ |
Sollte hier kein Volltext (PDF) verlinkt sein, dann kann es sein, dass dieser aus verschiedenen Gruenden (z.B. Lizenzen oder Copyright) nur in einer anderen Digital Library verfuegbar ist. Versuchen Sie in diesem Fall einen Zugriff ueber die verlinkte DOI: 10.18420/sicherheit2018_21
Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback
More Info
ISBN: 978-3-88579-675-6
ISSN: 1617-5468
xmlui.MetaDataDisplay.field.date: 2018
Language: (en)
Content Type: Text/Conference Paper