Observatorio de I+D+i UPM

Memorias de investigación
Communications at congresses:
Sharing information about security alerts using semantic web technologies
Year:2010
Research Areas
  • Electronic technology and of the communications
Information
Abstract
This paper presents a semantic web-based architecture to share alerts among Security Information Management Systems (SIMS). Such architecture is useful if two or more SIMS from different domains need to know information about alerts happening in the other domains, which is of vital importance for an early response to network incidents. For this, each SIMS has a knowledge base that contains the security alerts. This knowledge base can be queried from other SIMS, using standard semantic web protocols. To assess this architecture, both risk analysis and botnet detection use cases have been developed. The former one is based on the interoperability provided by this architecture. Rule-based reasoning is also used for the latter case. The performance of both use cases has been evaluated, providing some results.
International
Si
Congress
6th IEEE/IFIP International Conference on Network and Service Management (CNSM 2010)
960
Place
Niagara Falls, Canada
Reviewers
Si
ISBN/ISSN
978-1-4244-8910-7
10.1109/CNSM.2010.5691190
Start Date
25/10/2010
End Date
29/10/2010
From page
270
To page
273
Actas del Congreso
Participants
  • Autor: P. Holgado
  • Autor: Victor Abraham Villagra Gonzalez (UPM)
  • Autor: Jorge E. López de Vergara
  • Autor: Ivan Sanz
  • Autor: Antonio Amaya
Research Group, Departaments and Institutes related
  • Creador: Grupo de Investigación: Redes y Servicios de Telecomunicación e Internet
  • Departamento: Ingeniería de Sistemas Telemáticos
S2i 2020 Observatorio de investigación @ UPM con la colaboración del Consejo Social UPM
Cofinanciación del MINECO en el marco del Programa INNCIDE 2011 (OTR-2011-0236)
Cofinanciación del MINECO en el marco del Programa INNPACTO (IPT-020000-2010-22)