Please use this identifier to cite or link to this item:
https://rda.sliit.lk/handle/123456789/1742
Full metadata record
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Perera, V. H | - |
dc.contributor.author | Senarathne, A. N | - |
dc.contributor.author | Rupasinghe, L | - |
dc.date.accessioned | 2022-03-22T06:55:03Z | - |
dc.date.available | 2022-03-22T06:55:03Z | - |
dc.date.issued | 2019-12-05 | - |
dc.identifier.citation | V. H. Perera, A. N. Senarathne and L. Rupasinghe, "Intelligent SOC Chatbot for Security Operation Center," 2019 International Conference on Advancements in Computing (ICAC), 2019, pp. 340-345, doi: 10.1109/ICAC49085.2019.9103388. | en_US |
dc.identifier.isbn | 978-1-7281-4170-1 | - |
dc.identifier.uri | http://rda.sliit.lk/handle/123456789/1742 | - |
dc.description.abstract | Information security analysts currently face many challenges: both hidden and visible in the face of unique attack records. The rapid increase patterns of security monitoring and investigation tools (as an average of 20 security solutions have been used per company) leads to frequent changing between screens, alert fatigue, disjointed record keeping, and increased investigation time. This chatbot can suggest the flow of investigation and the relevant commands that will help to obtain the results which need to be resolved the incident. Automate the incident ticket creation is one of major achievement of this research. Security analysts also receive messages of security alerts of the AWS hosted instances. Security analysts are also continuing to work on their sub tasks, quite overloaded with their main tasks to engage in collaborative investigations and knowledge sharing. Chat-Ops help to vanquish and meet those challenges. Processes, automated workflows, the chatbot, security tools, and humans exist in the same chat window feeding data and commands in a worthy cycle. It will lead to huge changes in everything from remediation times and investigation depth to future learning and knowledge administration. Different analysts will drive the investigation in different ways. Most of the time, analysts will miss most important parts and techniques, but those parts could be very valuable for the result. The investigation flow and commands will suggest based on past investigations and commands that previous analysts were used. This chatbot will help in many ways of current analyst who work in a security operation center. | en_US |
dc.language.iso | en | en_US |
dc.publisher | IEEE | en_US |
dc.relation.ispartofseries | 2019 International Conference on Advancements in Computing (ICAC);Pages 340-345 | - |
dc.subject | Intelligent SOC | en_US |
dc.subject | SOC Chatbot | en_US |
dc.subject | Security Operation | en_US |
dc.subject | Operation Center | en_US |
dc.title | Intelligent SOC Chatbot for Security Operation Center | en_US |
dc.type | Article | en_US |
dc.identifier.doi | 10.1109/ICAC49085.2019.9103388 | en_US |
Appears in Collections: | 1st International Conference on Advancements in Computing (ICAC) | 2019 Department of Computer Systems Engineering-Scopes Research Papers - Dept of Computer Systems Engineering Research Papers - IEEE Research Papers - SLIIT Staff Publications |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
Intelligent_SOC_Chatbot_for_Security_Operation_Center.pdf Until 2050-12-31 | 410.02 kB | Adobe PDF | View/Open Request a copy |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.