Implementation of the distributed hierarchical security operation center using mobile agent group

Jung Shian Li; Che Jen Hsieh

doi:10.1109/3CA.2010.5533775

Implementation of the distributed hierarchical security operation center using mobile agent group

Jung Shian Li, Che Jen Hsieh

Institute of Computer and Communication Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Citations (Scopus)

Abstract

This paper proposes a novel hierarchical mobile-agent-based Security Operation Center (HMSOC) to overcome traditional SOC vulnerability in a fixed location suffering single point of failure attack. Furthermore, each division has its own alert and aggregation methodology. By IDMEF, session and timer methods, data from various divisions are fused and correlated efficiently in our proposed HMSOC. A prototype implemented in a network testbed shows HMSOC efficacy. The proposed HMSOC effectively integrates various alerts in a large network environment.

Original language	English
Title of host publication	3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation
Pages	79-82
Number of pages	4
DOIs	https://doi.org/10.1109/3CA.2010.5533775
Publication status	Published - 2010 Sep 3
Event	2010 International Symposium on Computer, Communication, Control and Automation, 3CA 2010 - Tainan, Taiwan Duration: 2010 May 5 → 2010 May 7

Publication series

Name	3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation
Volume	2

Other

Other	2010 International Symposium on Computer, Communication, Control and Automation, 3CA 2010
Country	Taiwan
City	Tainan
Period	10-05-05 → 10-05-07

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Hardware and Architecture
Control and Systems Engineering

Access to Document

10.1109/3CA.2010.5533775

Fingerprint Dive into the research topics of 'Implementation of the distributed hierarchical security operation center using mobile agent group'. Together they form a unique fingerprint.

Cite this

Li, J. S., & Hsieh, C. J. (2010). Implementation of the distributed hierarchical security operation center using mobile agent group. In 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation (pp. 79-82). [5533775] (3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation; Vol. 2). https://doi.org/10.1109/3CA.2010.5533775

@inproceedings{a721389c6e15459abd3bb8ff2766335e,

title = "Implementation of the distributed hierarchical security operation center using mobile agent group",

abstract = "This paper proposes a novel hierarchical mobile-agent-based Security Operation Center (HMSOC) to overcome traditional SOC vulnerability in a fixed location suffering single point of failure attack. Furthermore, each division has its own alert and aggregation methodology. By IDMEF, session and timer methods, data from various divisions are fused and correlated efficiently in our proposed HMSOC. A prototype implemented in a network testbed shows HMSOC efficacy. The proposed HMSOC effectively integrates various alerts in a large network environment.",

author = "Li, {Jung Shian} and Hsieh, {Che Jen}",

year = "2010",

month = sep,

day = "3",

doi = "10.1109/3CA.2010.5533775",

language = "English",

isbn = "9781424455669",

series = "3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation",

pages = "79--82",

booktitle = "3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation",

note = "2010 International Symposium on Computer, Communication, Control and Automation, 3CA 2010 ; Conference date: 05-05-2010 Through 07-05-2010",

}

Li, JS & Hsieh, CJ 2010, Implementation of the distributed hierarchical security operation center using mobile agent group. in 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation., 5533775, 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation, vol. 2, pp. 79-82, 2010 International Symposium on Computer, Communication, Control and Automation, 3CA 2010, Tainan, Taiwan, 10-05-05. https://doi.org/10.1109/3CA.2010.5533775

Implementation of the distributed hierarchical security operation center using mobile agent group. / Li, Jung Shian; Hsieh, Che Jen.

3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation. 2010. p. 79-82 5533775 (3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation; Vol. 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Implementation of the distributed hierarchical security operation center using mobile agent group

AU - Li, Jung Shian

AU - Hsieh, Che Jen

PY - 2010/9/3

Y1 - 2010/9/3

N2 - This paper proposes a novel hierarchical mobile-agent-based Security Operation Center (HMSOC) to overcome traditional SOC vulnerability in a fixed location suffering single point of failure attack. Furthermore, each division has its own alert and aggregation methodology. By IDMEF, session and timer methods, data from various divisions are fused and correlated efficiently in our proposed HMSOC. A prototype implemented in a network testbed shows HMSOC efficacy. The proposed HMSOC effectively integrates various alerts in a large network environment.

AB - This paper proposes a novel hierarchical mobile-agent-based Security Operation Center (HMSOC) to overcome traditional SOC vulnerability in a fixed location suffering single point of failure attack. Furthermore, each division has its own alert and aggregation methodology. By IDMEF, session and timer methods, data from various divisions are fused and correlated efficiently in our proposed HMSOC. A prototype implemented in a network testbed shows HMSOC efficacy. The proposed HMSOC effectively integrates various alerts in a large network environment.

UR - http://www.scopus.com/inward/record.url?scp=77956112322&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77956112322&partnerID=8YFLogxK

U2 - 10.1109/3CA.2010.5533775

DO - 10.1109/3CA.2010.5533775

M3 - Conference contribution

AN - SCOPUS:77956112322

SN - 9781424455669

T3 - 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation

SP - 79

EP - 82

BT - 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation

T2 - 2010 International Symposium on Computer, Communication, Control and Automation, 3CA 2010

Y2 - 5 May 2010 through 7 May 2010

ER -

Li JS, Hsieh CJ. Implementation of the distributed hierarchical security operation center using mobile agent group. In 3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation. 2010. p. 79-82. 5533775. (3CA 2010 - 2010 International Symposium on Computer, Communication, Control and Automation). https://doi.org/10.1109/3CA.2010.5533775