Abstract | ||
---|---|---|
At present information security (IS) incidents have become not only more numerous and diverse but also more damaging and disruptive. Preventive controls based on the IS risk assessment results decrease the majority but not all the IS incidents. Therefore, an IS incident management system is necessary for rapidly detecting IS incidents, minimizing loss and destruction, mitigating the vulnerabilities that were exploited and restoring the Internet of Things infrastructure (IoTI), including its IT services. These systems can be implemented on the basis of a Security Operations Center (SOC). Based on the related works a survey of the existing SOCs, their mission and main functions is given. The SOCs' classification as well as the key indicators of IS incidents in IoTI are proposed. Some serious first-generation SOCs' limitations are defined. This analysis leads to the main area of further research launched by the author. |
Year | DOI | Venue |
---|---|---|
2016 | 10.1109/FiCloud.2016.26 | 2016 IEEE 4th International Conference on Future Internet of Things and Cloud (FiCloud) |
Keywords | Field | DocType |
information security,information security incidents,Internet of Things,information security monitoring,Security Operations Center | Security operations center,Computer science,Problem management,Computer security,Certified Information Security Manager,Security service,Information security management,Security information and event management,Threat,Security management | Conference |
ISBN | Citations | PageRank |
978-1-5090-4053-7 | 3 | 0.93 |
References | Authors | |
0 | 1 |
Name | Order | Citations | PageRank |
---|---|---|---|
Natalia Miloslavskaya | 1 | 44 | 22.18 |