Article (Scientific journals)
VSOC - A Virtual Security Operating Center
Falk, Eric; Fiz Pontiveros, Beltran; Repcek, Stefan et al.
2017In Global Communications
Peer reviewed
 

Files


Full Text
vsoc-preprint.pdf
Author preprint (930.85 kB)
Request a copy

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] Security in virtualised environments is becoming increasingly important for institutions, not only for a firm’s own on-site servers and network but also for data and sites that are hosted in the cloud. Today, security is either handled globally by the cloud provider, or each customer needs to invest in its own security infrastructure. This paper proposes a Virtual Security Operation Center (VSOC) that allows to collect, analyse and visualize security related data from multiple sources. For instance, a user can forward log data from its firewalls, applications and routers in order to check for anomalies and other suspicious activities. The security analytics provided by the VSOC are comparable to those of commercial security incident and event management (SIEM) solutions, but are deployed as a cloud-based solution with the additional benefit of using big data processing tools to handle large volumes of data. This allows us to detect more complex attacks that cannot be detected with todays signature-based (i.e. rules) SIEM solutions.
Disciplines :
Computer science
Author, co-author :
Falk, Eric ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Fiz Pontiveros, Beltran ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Repcek, Stefan
Hommes, Stefan ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
State, Radu  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Sasnauskas, Raimondas;  SES Engineering
External co-authors :
no
Language :
English
Title :
VSOC - A Virtual Security Operating Center
Publication date :
07 December 2017
Journal title :
Global Communications
Publisher :
IEEE
Peer reviewed :
Peer reviewed
Focus Area :
Computational Sciences
Available on ORBilu :
since 18 December 2017

Statistics


Number of views
142 (10 by Unilu)
Number of downloads
1 (1 by Unilu)

Scopus citations®
 
2
Scopus citations®
without self-citations
2
WoS citations
 
2

Bibliography


Similar publications



Contact ORBilu