Uma Arquitetura Hierárquica Multinível para Ciência de Situação em Segurança da Informação

Ricardo Borges Almeida; Roger da Silva Machado; Diórgenes Y. L. da Rosa; Lucas Medeiros Donato; Adenauer Corrêa Yamin; Ana Marilza Pernas

doi:10.5753/sbcup.2016.9468

Ricardo Borges Almeida UFPel
Roger da Silva Machado UFPel
Diórgenes Y. L. da Rosa UFPel
Lucas Medeiros Donato De Montfort University
Adenauer Corrêa Yamin UFPel
Ana Marilza Pernas UFPel

DOI: https://doi.org/10.5753/sbcup.2016.9468

Abstract

Information security precautions are inherent in computer systems, but the consequent loss of their mismanagement become larger in high demand connectivity systems, such as the ubiquitous systems. In this perspective, it is proposed in this paper an approach based on scalability, flexibility, heterogeneity and autonomy, aiming to provide situation awareness in ubiquitous environments. The differential of the approach is its multilevel hierarchical architectur e designed over the distribution of situational awareness modules in three software components, which allows to provide increased autonomy to the components. The conception strategies and developed usage scenario showed that the approach offers autonomy presenting flexibility and scalability, proving to be opportune in today’s distributed and heterogeneous environments.

References

Anastasov, I. and Davcev, D. (2014). Siem implementation for global and distributed environments. In Computer Applications and Information Systems (WCCAIS), 2014 World Congress on, pages 1–6.

Bass, T. (1999). Multisensor data fusion for next generation distributed intrusion detection systems. In In Proceedings of the IRIS National Symposium on Sensor and Data Fusion, pages 24–27.

Bellavista, P., Corradi, A., Fanelli, M., and Foschini, L. (2012). A survey of context data distribution for mobile ubiquitous systems. ACM Comput. Surv., 44(4):24:1–24:45.

EsperTech (2015). Esper reference version 5.3.0. EsperTech Inc. - Event Series Intelligence.

Hewlett-Packard (2016). Acesso em 26 de maio de 2016. Disponível em: <http://www8.hp.com/us/en/software-solutions/siemsecurity-information-event-management/index.html>.

Langheinrich, M. (2010). Privacy in Ubiquitous Computing. J. Krumm, ed., CRC Press.

Lopes, J., Souza, R., Geyer, C., Costa, C., Barbosa, J., Pernas, A., and Yamin, A. (2014). A middleware architecture for dynamic adaptation in ubiquitous computing. j-jucs, 20(9):1327–1351.

McGuire, P. (2007). Getting Started with Pyparsing. O’Reilly, first edition.

Onwubiko, C. (2012a). Situational Awareness in Computer Network Defense: Principles, Methods and Applications: Principles, Methods and Applications. Information Science Reference.

Onwubiko, C. (2012b). Situational Awareness in Computer Network Defense: Principles, Methods and Applications: Principles, Methods and Applications. Premier reference source. Information Science Reference.

OSSEC (2016a). Acesso em 26 de maio de 2016. Disponível em: <http://ossec.github.io>.

OSSEC (2016b). Acesso em 26 de maio de 2016. Disponível em: <ossec-docs.readthedocs.org/en/latest/manual/rulesdecoders/rule-levels.html>.

SIMU (2015). Acesso em: 06 dez 2015. SIMU-project. Disponível em: <http://simu-project.de/english/project/index.html>.

Weiser, M. (1991). The computer for the 21st century. Scientific American, 265(3):66–75.