About | Contact Us | Register | Login
ProceedingsSeriesJournalsSearchEAI
Context-Aware Systems and Applications, and Nature of Computation and Communication. 9th EAI International Conference, ICCASA 2020, and 6th EAI International Conference, ICTCC 2020, Thai Nguyen, Vietnam, November 26–27, 2020, Proceedings

Research Article

Behavioral Analysis of SIEM Solutions for Energy Technology Systems

Download(Requires a free EAI acccount)
6 downloads
Cite
BibTeX Plain Text
  • @INPROCEEDINGS{10.1007/978-3-030-67101-3_21,
        author={Tomas Svoboda and Josef Horalek and Vladimir Sobeslav},
        title={Behavioral Analysis of SIEM Solutions for Energy Technology Systems},
        proceedings={Context-Aware Systems and Applications, and Nature of Computation and Communication. 9th EAI International Conference, ICCASA 2020, and 6th EAI International Conference, ICTCC 2020, Thai Nguyen, Vietnam, November 26--27, 2020, Proceedings},
        proceedings_a={ICCASA \& ICTCC},
        year={2021},
        month={1},
        keywords={SIEM Qradar LogRhythm NextGen SIEM User and entity behavioral analysis IBM sense CloudAI},
        doi={10.1007/978-3-030-67101-3_21}
    }
    
  • Tomas Svoboda
    Josef Horalek
    Vladimir Sobeslav
    Year: 2021
    Behavioral Analysis of SIEM Solutions for Energy Technology Systems
    ICCASA & ICTCC
    Springer
    DOI: 10.1007/978-3-030-67101-3_21
Tomas Svoboda1,*, Josef Horalek1, Vladimir Sobeslav1
  • 1: Faculty of Management and Informatics
*Contact email: tomas.svoboda@uhk.cz

Abstract

The aim of this article is to analyze SIEM solutions. Emphasizing the use of these systems to ensure data confidentiality, availability, and integrity monitoring energy technology systems. First, the issue of security in the area of energy systems is introduced. In order to maintain the availability, confidentiality and data integrity, the user behavioral analysis modules in SIEM systems are also introduced. The next section presents specific SIEM solutions that can be currently used not only in ICS environments and which will be subject to comparative analysis. This is IBM Security QRadar SIEM and LogRhythm NextGen SIEM. What follows is the introduction and implementation of modules for user behavioral analysis in the mentioned SIEM solutions, including testing own Use Case for testing user behavioral analysis modules. The results of the comparative analysis of user behavioral analysis modules in selected SIEM solutions are presented in the last section.

Keywords
SIEM Qradar LogRhythm NextGen SIEM User and entity behavioral analysis IBM sense CloudAI
Published
2021-01-13
Appears in
SpringerLink
http://dx.doi.org/10.1007/978-3-030-67101-3_21
Copyright © 2020–2025 ICST
EBSCOProQuestDBLPDOAJPortico
EAI Logo

About EAI

  • Who We Are
  • Leadership
  • Research Areas
  • Partners
  • Media Center

Community

  • Membership
  • Conference
  • Recognition
  • Sponsor Us

Publish with EAI

  • Publishing
  • Journals
  • Proceedings
  • Books
  • EUDL