[Home ] [Archive]   [ فارسی ]  
:: Main :: About :: Current Issue :: Archive :: Search :: Submit :: Contact ::
Main Menu
Home::
Journal Information::
About the Journal
Editorial Board
Aims& Scopes
Journal News
Articles archive::
All Issues
Current Issue
Browse by Authors
Browse by Keywords
For Authors::
Call for Papers
Submission Instruction
Submission Form
For Reviewers::
Reviewers Section
Reviewers Name
Registration::
Registration Information
Registration Form
Site Facilities::
Site map
Search contents
FAQ
Top 10 contents
Inform to friends
Indexing::
ISC
SID
Contact us::
Contact Information
Contact us
::
Search in website

Advanced Search
..
Receive site information
Enter your Email in the following box to receive the site news and information.
..
Print ISSN
Print ISSN: 2476-3047
..
:: Volume 3, Issue 1 (9-2014) ::
منادی 2014, 3(1): 39-57 Back to browse issues page
Security Alert Correlation Survey and Study of These Features in OSSIM
Abstract:   (7837 Views)

With the increase in attacks, the different mechanisms in different layers of defense are applied in order to detect and prevent attacks. In this case we are encountered with massive amounts of alerts with low level and scattered information. Alert correlation is one of the solutions that are used to combine alerts and create a high level view of under controlled network security situations, and a lot of researches have been done in this field. In this paper, we describe the OSSIM and introduce its features. In addition with a combined approach to the alert correlation problem, a new categorization is done on the scientific researches and with respect to these researches, we described the process of alert correlation in the OSSIM and established a correspondence between components of the OSSIM and one of the researches. In most researches the focus is on the alerts correlation of intrusion detection systems, we have shown in this paper that the other resources are effective in multi-stage attacks correlation.

Keywords: Alert Correlation, OSSIM, Log Correlation, Multistage Attacks
Full-Text [PDF 2674 kb]   (1516 Downloads)    
Type of Study: Review Article | Subject: Special
Received: 2015/08/18 | Accepted: 2015/08/18 | Published: 2015/08/18
Add your comments about this article
Your username or Email:

CAPTCHA

XML   Persian Abstract   Print

Download citation:
BibTeX | RIS | EndNote | Medlars | ProCite | Reference Manager | RefWorks
Send citation to:
Security Alert Correlation Survey and Study of These Features in OSSIM. منادی 2014; 3 (1) :39-57
URL: http://monadi.isc.org.ir/article-1-26-en.html
Rights and permissions
Creative Commons License This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
Volume 3, Issue 1 (9-2014) Back to browse issues page
دوفصل نامه علمی منادی امنیت فضای تولید و تبادل اطلاعات( افتا) Biannual Journal Monadi for Cyberspace Security (AFTA)
Persian site map - English site map - Created in 0.13 seconds with 39 queries by YEKTAWEB 4704