Name
Title | ||
|---|---|---|
Visual Problem-Solving Support for New Event Triage in Centralized Network Security Monitoring: Challenges, Tools and Benefits |
Abstract | ||
|---|---|---|
Organizations that provide centralized security monitoring of the net- works of multiple third-party organizations are faced with a challenging task. The amount of security event data to be processed presents not only a technical chal- lenge, but also a problem-solving challenge to operators. We present a model of the problem-solving process and discuss how visual support tools can facilitate the central problem-solving step called new event triage. We argue that with tools such as these the natural benefits of centralized monitoring can come into play, which enhances effectiveness of centralized monitoring to a level beyond the reach of or- ganizations focusing exclusively on their own network. |
Year | Venue | Keywords |
|---|---|---|
2003 | IMF | network security |
Field | DocType | Citations |
Network security policy,Computer security,Computer science,Network security,Security service,Cloud computing security,Triage,Security information and event management,Network Access Control,Computer security model | Conference | 6 |
PageRank | References | Authors |
0.64 | 7 | 3 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Markus Stolze | 1 | 184 | 34.39 |
| René Pawlitzek | 2 | 9 | 1.12 |
| Andreas Wespi | 3 | 444 | 51.66 |