Secured Access Control in Security Information and Event Management
                        Systems

Rikhtechi, Leila; Rafeh, Vahid; Rezakhani, Afshin

doi:10.52547/jist.9.33.67

Cited by 6 publications

(6 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While the data contained in RFID tags are already secured with key security, using a Secure Access Module (SAM) device for security would be an even better approach [39], [40].…”

Section: B Discussionmentioning

confidence: 99%

The Application of LoRa Module and Smart Card for A Large-Scale Area Attendance Monitoring System

Noprianto,

Syaifudin,

Firdaus

et al. 2023

IJCDS

View full text Add to dashboard Cite

The Internet of Things (IoT) is an emerging device type that shifts our traditional way of living into high technology lifestyle. IoT enables interconnection between electronic peripherals and sensor devices through internet. Thus, a flawless data communication method plays an important role to develop an IoT system. This study proposes an attendance monitoring system for use in large-scale areas that are difficult to be integrated by LAN using LoRa modular system. By integrating LoRa technology into the IoT system, a wide-range data transmission performance issue can be resolved with the utilization of smart card technology to develop a module for recording attendance portably. To evaluate the data retrieval effectiveness, a technique for value measurement of RSSI, SNR, and LoRa packet loss has been applied in indoor and outdoor experiments at a campus in Indonesia. The results show the average RSSI value of -81.4 in the indoor experiment, which has the best value close to 0. For outdoors, the data transmission distance is only able to reach 133.17 m in the case of the standard LoRa device configurations applied, for instance, the use of antennas for sending and receiving data on LoRa. Another influencing factor is the placement of the receiver and sender of LoRa at a location that is blocked by buildings. The use of RFID technology is employed to record employee attendance, which comprises components such as a microcontroller, RFID reader, and LCD to display information at that time. Writing data directly onto RFID eliminates the need to connect to a server to obtain employee information, providing an advantage in constructing infrastructure. Although data is written and read directly, security is still enforced by utilizing the authentication key contained in the RFID.

show abstract

“…While the data contained in RFID tags are already secured with key security, using a Secure Access Module (SAM) device for security would be an even better approach [39], [40].…”

Section: B Discussionmentioning

confidence: 99%

The Application of LoRa Module and Smart Card for A Large-Scale Area Attendance Monitoring System

Noprianto,

Syaifudin,

Firdaus

et al. 2023

IJCDS

View full text Add to dashboard Cite

show abstract

“…ere is a need for pervasive visibility and deep insights into the application, devices, packets, processes, network flows, and workload communications within an MEC environment. Correlating logs and data analytics in the MEC environment would enable the identification of anomalies across the MEC ecosystem [38]. Security analysts should be able to monitor the threat landscape in real time, triage security incidents, and apply intelligent security controls.…”

Section: Securementioning

confidence: 99%

“…e MEC operator must monitor, manage, and control the security posture using policies based on a predetermined security baseline. MEC operators can determine if the UE can still be trusted and deemed compliant by interrogating the UE posture using Network Access Control (NAC) [38] with serial device profiling. A Unified Endpoint Management (UEM) [44] solution may enable a MEC operator to manage, monitor, and control all devices, that is, UE, nodes, and IoT across all MEC functional layers.…”

Section: Securing the Trust Pillarsmentioning

confidence: 99%

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

Ali

Hijjawi

Campbell

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

Multiaccess Edge Computing (MEC) has been adopted to provide an environment that supports cloud computing capabilities and IT services at the network edge. The open architecture of cloud computing and network access at the edge provides malicious actors with many attack vectors. The MEC system entities cannot be permanently trusted due to the dynamic and shareable nature of MEC deployments. This paper presents a classification of MEC entities that can be used to define security controls based on the Zero-Trust Security approach. The security controls are organised into a maturity framework that can be used to guide the systematic development of trust and security in an MEC environment. In this framework, a Minimum Viable Security posture defines the first operational step towards full implementation of Zero-Trust Security in an MEC environment.

show abstract

“…SIEM solutions have evolved into comprehensive systems that offer extensive visibility, enabling the identification of high-risk areas and proactive mitigation strategies to minimize costs and incident response time [16]. Furthermore, in [17], the authors assert that SIEM enables the storage and monitoring of unwanted events and unauthorized access to computer system records, which can lead to various security threats, including information leakage and breaches of privacy and confidentiality.…”

Section: Introductionmentioning

confidence: 99%

An Integral Cybersecurity Approach Using a Many-Objective Optimization Strategy

Salinas,

Soto,

Crawford

et al. 2023

IEEE Access

View full text Add to dashboard Cite

Data networks and computing devices have experienced exponential growth. Within a short span of time, they have opened new digital frontiers while also bringing forth new threats. These threats have the potential to increase costs and disrupt regular operations. Choosing a cybersecurity plan to address these threats requires balancing direct and indirect costs against the benefits of implementation and subsequent operation. In this study, we propose an efficient strategy for designing networking topologies by incorporating a Security Information and Event Management System. This system consists of a central server and Network Intrusion Detection Sensors, which gather data and promptly transmit information regarding suspicious activities to the server. The server then takes immediate action in case of incidents. To determine the optimal number and placement of sensors, a many-objective optimization approach is employed. The problem is mathematically modeled using linear programming. To solve the optimization problem, swarm intelligence techniques such as the particle swarm optimizer, the bat algorithm, and the black hole method are utilized. Various test scenarios were created by presenting low, medium, and complex instances of conventional networks. The results obtained using the black hole bio-inspired algorithm were particularly satisfying, surpassing the performance and resolution of the other methods.

show abstract

Secured Access Control in Security Information and Event Management Systems

Cited by 6 publications

References 16 publications

The Application of LoRa Module and Smart Card for A Large-Scale Area Attendance Monitoring System

The Application of LoRa Module and Smart Card for A Large-Scale Area Attendance Monitoring System

A Maturity Framework for Zero-Trust Security in Multiaccess Edge Computing

An Integral Cybersecurity Approach Using a Many-Objective Optimization Strategy

Contact Info

Product

Resources

About