sesa 18: e2

Research Article

A Methodology for the Dynamic Design of Adaptive Log Management Infrastructures

Download37 downloads
  • @ARTICLE{10.4108/eai.25-1-2019.159347,
        author={V. Anastopoulos and S. Katsikas},
        title={A Methodology for the Dynamic Design of Adaptive Log Management Infrastructures},
        journal={EAI Endorsed Transactions on Security and Safety: Online First},
        volume={},
        number={},
        publisher={EAI},
        journal_a={SESA},
        year={2019},
        month={7},
        keywords={log management, social network analysis, organizational risk analyzer, risk},
        doi={10.4108/eai.25-1-2019.159347}
    }
    
  • V. Anastopoulos
    S. Katsikas
    Year: 2019
    A Methodology for the Dynamic Design of Adaptive Log Management Infrastructures
    SESA
    EAI
    DOI: 10.4108/eai.25-1-2019.159347
V. Anastopoulos1,*, S. Katsikas2,3
  • 1: Department of Digital Systems, University of Piraeus, Piraeus, Greece
  • 2: Department of Information Security and Communication Technology, Norwegian University of Science and Technology, Gjøvik N-2802, Norway
  • 3: Faculty of Pure and Applied Sciences, Open University of Cyprus, Nicosia, Cyprus
*Contact email: Vasanasto@gmail.com

Abstract

Organizations collect log data for various reasons, including security related ones. The multitude and diversity of the devices that generate log records increases, resulting to dispersed networks and large volumes of data. The design of a log management infrastructure is usually led by decisions that are commonly based on industry best practices and experience, but fail to adapt to the evolving threat landscape. In this work a novel methodology for the design of a dynamic log management infrastructure is proposed. The proposed methodology leverages social network analysis to relate the infrastructure with the threat landscape, thus enabling it to evolve as threats evolve. The workings of the methodology are demonstrated by means of its application for the design of the log management infrastructure of a real organization.