With the increase of information flows transmitted between different information systems, organizations using these systems are increasingly dependent on ensuring the continuity and accuracy of ongoing processes in these systems. It is necessary to have tools for analyzing the large number of real-time events in order to respond adequately to security threats emerging in information systems. The field of application of SIEM systems is primarily for detecting and preventing network intrusion, but it can also be used to analyze traffic whether it is useful or malicious.
BT - Information & Security: An International Journal DO - https://doi.org/10.11610/isij.4319 IS - 2 LA - eng N2 -With the increase of information flows transmitted between different information systems, organizations using these systems are increasingly dependent on ensuring the continuity and accuracy of ongoing processes in these systems. It is necessary to have tools for analyzing the large number of real-time events in order to respond adequately to security threats emerging in information systems. The field of application of SIEM systems is primarily for detecting and preventing network intrusion, but it can also be used to analyze traffic whether it is useful or malicious.
PY - 2019 SE - 257 SP - 257 EP - 263 T2 - Information & Security: An International Journal TI - Generalized Net Model of an Automated System for Monitoring, Analysing and Managing Events Related to Information Security VL - 43 ER -