Generalized Net Model of an Automated System for Monitoring, Analysing and Managing Events Related to Information Security
Publication Type:Journal Article
Source:Information & Security: An International Journal, Volume 43, Issue 2, p.257-263 (2019)
Keywords:Information Security, security information and event management, security services, security tools
Abstract:With the increase of information flows transmitted between different information systems, organizations using these systems are increasingly dependent on ensuring the continuity and accuracy of ongoing processes in these systems. It is necessary to have tools for analyzing the large number of real-time events in order to respond adequately to security threats emerging in information systems. The field of application of SIEM systems is primarily for detecting and preventing network intrusion, but it can also be used to analyze traffic whether it is useful or malicious.