Functionality, reliability and adaptability improvements to the OSSIM information security console

Abstract: Security consoles are among the most widely deployed tools for information security management in today's organizations. This article summarizes the work of our research team, in order to incorporate several enhancements to the OSSIM information security console. Such enhancements include integration with physical security control devices, automatic creation of correlation directives for OSSIM's correlation engine, and a significant improvement in information capture reliability on high-traffic networks.

“…By integrating with physical access control systems, the SIEM system can monitor that only authorized employees have physical access to specific areas within the organization. In Madrid et al (2009) it is described specifically the integration of physical security systems to the OSSIM (AlienVault open source SIEM) security console. (10) Incident management.…”

SIEM‐based framework for security controls automation

“…By integrating with physical access control systems, the SIEM system can monitor that only authorized employees have physical access to specific areas within the organization. In Madrid et al (2009) it is described specifically the integration of physical security systems to the OSSIM (AlienVault open source SIEM) security console. (10) Incident management.…”

SIEM‐based framework for security controls automation

Integration of a System for Critical Infrastructure Protection with the OSSIM SIEM Platform: A dam case study

Examining the potential of open source remote sensing for building effective decision support systems for precision agriculture in resource-poor settings