A Blockchain based Security Information and Event Monitoring Framework

A Blockchain based Security Information and Event Monitoring Framework

연구 분야: Verification

학회: 2023 25th International Conference on Advanced Communication Technology (ICACT)

Security Information and Event Monitoring (SIEM) tools collect log data which helps organizations to plan appropriate security assessment and reconciliation strategies. The majority of the SIEM tools generate reports instantaneously. Root cause analysis of security risks needs data provenance capabilities. Blockchain Technology augments SIEM tools with data provenance capability so that an effective security framework can be built for organizations. In this paper, we describe a unified and comprehensive security assurance framework which supports a tamper-proof, time-stamped and distributed storage repository to ensure data provenance and is useful in security assessment in compliance to cloud control matrix of CSA. This framework can be used in a Cloud environment also by adding additional security log data collection points.