Security Incident Response Automation for xPON Networks

Thumbnail
Voir/Ouvrir
Date
2022-04-25
Auteur
Altmetrics
10.24138/jcomss-2022-0033
Metadata
Afficher la notice complète
Résumé
This paper presents a developed tool for automated security incident reporting in passive optical networks. This tool interacts with our programmable development card, developed detection modules, and TheHive project. The custom implementation of the solution has resulted in anomaly reporting templates for xPON networks that can be universally applied and new definitions of indicators of compromise. The custom implementation consists of a collector and middleware layer between the programmable card and Apache Kafka.
Keywords
Automation, CERT, Incidents, Reports, SIRAP, Tool
URI
http://hdl.handle.net/11012/204170
Document type
Peer reviewed
Document version
Final PDF
Source
Journal of Communications Software and Systems. 2022, vol. 18, issue 2, p. 144-152.
https://jcoms.fesb.unist.hr/10.24138/jcomss-2022-0033/
DOI
10.24138/jcomss-2022-0033
Collections
Citace PRO
Creative Commons Attribution-NonCommercial 4.0 International
Excepté là où spécifié autrement, la license de ce document est décrite en tant que Creative Commons Attribution-NonCommercial 4.0 International