CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)
The rapid development of information technology, especially the internet, has created threats to cyberspace. Various types of threats have created the need to implement a cybersecurity system. In addition, cyber threats have also triggered the issuance of several cybersecurity regulations, making...
Saved in:
| Main Author: | |
|---|---|
| Format: | Theses |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/85921 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| id |
id-itb.:85921 |
|---|---|
| spelling |
id-itb.:859212024-09-12T10:12:24ZCYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) Arlingga, Yudha Indonesia Theses SIEM, Hybrid Belief Rule Base, Cyber Security Event. INSTITUT TEKNOLOGI BANDUNG https://digilib.itb.ac.id/gdl/view/85921 The rapid development of information technology, especially the internet, has created threats to cyberspace. Various types of threats have created the need to implement a cybersecurity system. In addition, cyber threats have also triggered the issuance of several cybersecurity regulations, making the need to implement a cybersecurity system even more urgent. Various sectors, including digital startups and the government, are required to immediately comply with regulations in which the implementation of a cybersecurity system is part of the regulation. To protect cyberspace from threats and meet the needs of a cybersecurity system, one effort that can be made is to implement Security Information and Event Management (SIEM) technology, which is also an important part of the cybersecurity system within the Cyber Security Operation Center (CSOC) framework and is also in line with the NIST Cyber Security Framework and other regulations. However, the fulfillment of this technology has encountered several obstacles, namely the problem of cost and the increase in types of attacks, data and devices. The fulfillment of paid technology tends to be relatively expensive. In addition, the sophistication of the types of attacks and the amount of data generated by devices continues to increase, requiring a method solution to handle it as well. The solution offered to answer this problem is to implement an open source SIEM which is strengthened by Hybrid Belief Rule Based (HBRB) modeling which is part of the expert system. This research has successfully designed, implemented, and documented the application of open source SIEM strengthened by HBRB modeling with the aim of classifying cyber security events. The results of the study have been evaluated and it is known that the implemented SIEM can be applied to real work environments. text |
| institution |
Institut Teknologi Bandung |
| building |
Institut Teknologi Bandung Library |
| continent |
Asia |
| country |
Indonesia Indonesia |
| content_provider |
Institut Teknologi Bandung |
| collection |
Digital ITB |
| language |
Indonesia |
| description |
The rapid development of information technology, especially the internet, has
created threats to cyberspace. Various types of threats have created the need to
implement a cybersecurity system. In addition, cyber threats have also triggered
the issuance of several cybersecurity regulations, making the need to implement a
cybersecurity system even more urgent. Various sectors, including digital startups
and the government, are required to immediately comply with regulations in which
the implementation of a cybersecurity system is part of the regulation. To protect
cyberspace from threats and meet the needs of a cybersecurity system, one effort
that can be made is to implement Security Information and Event Management
(SIEM) technology, which is also an important part of the cybersecurity system
within the Cyber Security Operation Center (CSOC) framework and is also in line
with the NIST Cyber Security Framework and other regulations. However, the
fulfillment of this technology has encountered several obstacles, namely the
problem of cost and the increase in types of attacks, data and devices. The
fulfillment of paid technology tends to be relatively expensive. In addition, the
sophistication of the types of attacks and the amount of data generated by devices
continues to increase, requiring a method solution to handle it as well. The solution
offered to answer this problem is to implement an open source SIEM which is
strengthened by Hybrid Belief Rule Based (HBRB) modeling which is part of the
expert system. This research has successfully designed, implemented, and
documented the application of open source SIEM strengthened by HBRB modeling
with the aim of classifying cyber security events. The results of the study have been
evaluated and it is known that the implemented SIEM can be applied to real work
environments. |
| format |
Theses |
| author |
Arlingga, Yudha |
| spellingShingle |
Arlingga, Yudha CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| author_facet |
Arlingga, Yudha |
| author_sort |
Arlingga, Yudha |
| title |
CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| title_short |
CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| title_full |
CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| title_fullStr |
CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| title_full_unstemmed |
CYBER SECURITY EVENT CLASSIFICATION USING HYBRID BELIEF RULE BASE MODEL IN OPEN SOURCE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) |
| title_sort |
cyber security event classification using hybrid belief rule base model in open source security information and event management (siem) |
| url |
https://digilib.itb.ac.id/gdl/view/85921 |
| _version_ |
1822999340239552512 |