본문 바로가기
  • Home

Enhancement of Internal Control by expanding Security Information Event Management System

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2015, 20(8), pp.35-43
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science

임동성 1 Yong-min Kim 1

1전남대학교

Accredited

ABSTRACT

Recently, internal information leaks is increasing rapidly by internal employees and authorized outsourcing personnel. In this paper, we propose a method to integrate internal control systems like system access control system and Digital Rights Managements and so on through expansion model of SIEM(Security Information Event Management system). this model performs a analysis step of security event link type and validation process. It develops unit scenarios to react illegal acts for personal information processing system and acts to bypass the internal security system through 5W1H view. It has a feature that derives systematic integration scenarios by integrating unit scenarios. we integrated internal control systems like access control system and Digital Rights Managements and so on through expansion model of Security Information Event Management system to defend leakage of internal information and customer information. We compared existing defense system with the case of the expansion model construction. It shows that expanding SIEM was more effectively.

Citation status

* References for papers published after 2022 are currently being built.