Тип публикации: доклад, тезисы доклада, статья из сборника материалов конференций

Конференция: Siberian Scientific Workshop on Data Analysis Technologies with Applications, SibDATA 2020; Krasnoyarsk; Krasnoyarsk

Год издания: 2020

Ключевые слова: cyberthreats, data analysis, internet, log, security

Аннотация: The article describes log analysis of Internet services of the Krasnoyarsk Science Center (Russia). The importance of log analysis as a method to improve the effectiveness of network security is shown. Data sources are described. The study examines the following systems: Netflow IP traffic, intrusion prevention system, corporate maПоказать полностьюil server, web server. The log data was used to distinguish the frequency of events and to identify malicious behavior. The article describes security threats identified during the analysis of logs. The analysis results allow optimizing protection systems against network attacks. Measures taken to improve network security are presented.

Журнал: CEUR Workshop Proceedings

Выпуск журнала: 2727

Номера страниц: 16-24

• Isaev S. (Institute of Computational Modelling of the Siberian Branch,Russian Academy of Sciences)
• Kononov D. (Institute of Computational Modelling of the Siberian Branch,Russian Academy of Sciences)
• Malyshev A. (Institute of Computational Modelling of the Siberian Branch,Russian Academy of Sciences)

• Ядро РИНЦ (eLIBRARY.RU)