Title | ||
---|---|---|
A novel security information and event management system for enhancing cyber security in a hydroelectric dam. |
Abstract | ||
---|---|---|
Security information and event management (SIEM) systems are increasingly used to cope with the security challenges involved in critical infrastructure protection. However, these systems have several limitations. This paper describes an enhanced security information and event management system that (i) resolves conflicts between security policies; (ii) discovers unauthorized network data paths and appropriately reconfigures network devices; and (iii) provides an intrusion- and fault-tolerant storage system that ensures the integrity and non-forgeability of stored events. The performance of the enhanced system is demonstrated using a case study involving a hydroelectric dam. The case study considers an attack model that affects portions of the information technology infrastructure of the hydroelectric dam and demonstrates that the security information and event management system is successfully able to detect and respond to attacks. |
Year | DOI | Venue |
---|---|---|
2016 | 10.1016/j.ijcip.2016.03.002 | International Journal of Critical Infrastructure Protection |
Keywords | Field | DocType |
Security information and event management (SIEM) Systems,Decision support systems,Resilient event storage,Hydroelectric dam | Asset (computer security),Computer security,Critical infrastructure protection,Real-time computing,Security service,Information security management,Cloud computing security,Security policy,Engineering,Security information and event management,Countermeasure (computer) | Journal |
Volume | Issue | ISSN |
13 | C | 1874-5482 |
Citations | PageRank | References |
4 | 0.43 | 6 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Cesario Di Sarno | 1 | 34 | 4.68 |
Alessia Garofalo | 2 | 24 | 3.63 |
Ilaria Matteucci | 3 | 270 | 34.37 |
Marco Vallini | 4 | 32 | 4.22 |