Cargando…
Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures
Security Information and Event Management (SIEM) systems have been widely deployed as a powerful tool to prevent, detect, and react against cyber-attacks. SIEM solutions have evolved to become comprehensive systems that provide a wide visibility to identify areas of high risks and proactively focus...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8309804/ https://www.ncbi.nlm.nih.gov/pubmed/34300500 http://dx.doi.org/10.3390/s21144759 |
| _version_ | 1783728609412775936 |
|---|---|
| author | González-Granadillo, Gustavo González-Zarzosa, Susana Diaz, Rodrigo |
| author_facet | González-Granadillo, Gustavo González-Zarzosa, Susana Diaz, Rodrigo |
| author_sort | González-Granadillo, Gustavo |
| collection | PubMed |
| description | Security Information and Event Management (SIEM) systems have been widely deployed as a powerful tool to prevent, detect, and react against cyber-attacks. SIEM solutions have evolved to become comprehensive systems that provide a wide visibility to identify areas of high risks and proactively focus on mitigation strategies aiming at reducing costs and time for incident response. Currently, SIEM systems and related solutions are slowly converging with big data analytics tools. We survey the most widely used SIEMs regarding their critical functionality and provide an analysis of external factors affecting the SIEM landscape in mid and long-term. A list of potential enhancements for the next generation of SIEMs is provided as part of the review of existing solutions as well as an analysis on their benefits and usage in critical infrastructures. |
| format | Online Article Text |
| id | pubmed-8309804 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-83098042021-07-25 Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures González-Granadillo, Gustavo González-Zarzosa, Susana Diaz, Rodrigo Sensors (Basel) Article Security Information and Event Management (SIEM) systems have been widely deployed as a powerful tool to prevent, detect, and react against cyber-attacks. SIEM solutions have evolved to become comprehensive systems that provide a wide visibility to identify areas of high risks and proactively focus on mitigation strategies aiming at reducing costs and time for incident response. Currently, SIEM systems and related solutions are slowly converging with big data analytics tools. We survey the most widely used SIEMs regarding their critical functionality and provide an analysis of external factors affecting the SIEM landscape in mid and long-term. A list of potential enhancements for the next generation of SIEMs is provided as part of the review of existing solutions as well as an analysis on their benefits and usage in critical infrastructures. MDPI 2021-07-12 /pmc/articles/PMC8309804/ /pubmed/34300500 http://dx.doi.org/10.3390/s21144759 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article González-Granadillo, Gustavo González-Zarzosa, Susana Diaz, Rodrigo Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title | Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title_full | Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title_fullStr | Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title_full_unstemmed | Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title_short | Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures |
| title_sort | security information and event management (siem): analysis, trends, and usage in critical infrastructures |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8309804/ https://www.ncbi.nlm.nih.gov/pubmed/34300500 http://dx.doi.org/10.3390/s21144759 |
| work_keys_str_mv | AT gonzalezgranadillogustavo securityinformationandeventmanagementsiemanalysistrendsandusageincriticalinfrastructures AT gonzalezzarzosasusana securityinformationandeventmanagementsiemanalysistrendsandusageincriticalinfrastructures AT diazrodrigo securityinformationandeventmanagementsiemanalysistrendsandusageincriticalinfrastructures |