Please use this identifier to cite or link to this item: https://rda.sliit.lk/handle/123456789/2420
Full metadata record
DC FieldValueLanguage
dc.contributor.authorVaratharaj, A-
dc.contributor.authorRupasinghe, P. L-
dc.contributor.authorLiyanapathirana, C-
dc.date.accessioned2022-05-20T09:08:27Z-
dc.date.available2022-05-20T09:08:27Z-
dc.date.issued2021-02-24-
dc.identifier.issn2773-7136-
dc.identifier.urihttp://rda.sliit.lk/handle/123456789/2420-
dc.description.abstractNow a days, Information Communication Technology (ICT) plays an important role in the world. In IT, Cyber Security holds a vast place. Cyber Threat Intelligence (CTI) leads the significant place within Cyber Security, as many Cyber Threats need to be faced every day by a particular organization. Security Operation Center (SOC) helps to monitor and analyze an organization’s security position in Real Time. This paper proposes about the Cyber Threat Intelligence framework in a SOC Environment in Real Time. The proposed framework contains of three layers, which are built above Security Onion. The Layer 1 comprises of input data from online and offline sources. In Layer 2, implemented two components namely Filter data and Cut down data, which receive the data from Layer 1. Finally, in Layer 3 delivers a detailed report. As the input for the Layer 1, Financial Datasets is used. These Financial Datasets, which helps in order to detect the Financial Frauds. Machine Learning is used to train the model. By implementing CTI System in an organization, it helps to gain predictive output regarding the upcoming threats. Also, it helps to ensure the reputation of an organization by establishing trust between the users. Helps to increase the number of customers to an organization. The above are the advantages gained by a particular organization by having a CTI System.en_US
dc.language.isoenen_US
dc.publisherDepartment of Computing and Information Systems, Faculty of Applied Sciences, Sabaragamuwa University of Sri Lankaen_US
dc.relation.ispartofseriesUniversity level conferences → INTERNATIONAL CONFERENCE ON ADVANCED RESEARCH IN COMPUTING;-
dc.subjectInformation Communication Technologyen_US
dc.subjectCyber Securityen_US
dc.subjectCyber Threat Intelligenceen_US
dc.subjectSecurity Operation Centeren_US
dc.subjectSecurity Onionen_US
dc.subjectElastic search-Logstash-Kibanaen_US
dc.subjectMachine Learningen_US
dc.titleDevelopment of Cyber Threat Intelligence System in a SOC Environment for Real Time Environmenten_US
dc.typeArticleen_US
Appears in Collections:Research Papers - Open Access Research
Research Papers - SLIIT Staff Publications
Research Publications -Dept of Information Technology



Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.