EnglishОчистка Cookie - вибирає мову установки браузера

Effectiveness of Information Security Control using Audit Logs

Kostiuk, Yuliia та Skladannyi, Pavlo та Sokolov, Volodymyr та Zhyltsov, Oleksii та Ivanichenko, Yevhen (2025) Effectiveness of Information Security Control using Audit Logs Cybersecurity Providing in Information and Telecommunication Systems 2025 (3991). с. 524-538. ISSN 1613-0073

[thumbnail of Y_Kostiuk_P_Skladannyi_V_Sokolov_O_Zhyltsov_Y_Ivanichenko_CIPTS_2025_3991.pdf] Текст
Y_Kostiuk_P_Skladannyi_V_Sokolov_O_Zhyltsov_Y_Ivanichenko_CIPTS_2025_3991.pdf
Download (1MB)
Офіційне посилання: https://ceur-ws.org/Vol-3991/

Анотація

With the ever-increasing interconnectedness of computers through corporate networks and the Internet, ensuring information security and implementing appropriate security policies and procedures is becoming increasingly important. An essential aspect of security is information registration in security audit logs. At present, information security is ensured through corporate application packages that use security agents specific to each platform. These agents are installed on workstations to provide security, but they have limited capabilities and are only part of the application suite. There is a need to find optimized solutions. When detecting an attack, the proactive audit system makes a decision on neutralization, taking into account the type of object and attack conditions, and performs various measures, such as notifying the administrator, blocking user access, and rebooting the workstation. The general model of proactive audit logs eliminates agents and places security audit logs on a remote server. The server can perform a thorough and intelligent analysis of audit logs to effectively verify and enforce security policies in a more comprehensive format. This paper aims to analyze and study the use of audit logs for security purposes in enterprise products.

Тип елементу : Стаття
Ключові слова: security audit; information security; audit log; security policy; monitoring; security agents; process model; fuzzy Petri net
Типологія: Статті у базах даних > Scopus (без квартилю)
Підрозділи: Факультет інформаційних технологій та математики > Кафедра інформаційної та кібернетичної безпеки ім. професора Володимира Бурячка
Користувач, що депонує: Павло Миколайович Складанний
Дата внесення: 22 Лип 2025 08:25
Останні зміни: 22 Лип 2025 08:25
URI: https://elibrary.kubg.edu.ua/id/eprint/52541

Actions (login required)

Перегляд елементу Перегляд елементу