Security and Threat Detection through Cloud-Based Wazuh Deployment

Security and Threat Detection through Cloud-Based Wazuh Deployment

연구 분야: Databases

학회: 2024 IEEE 1st Karachi Section Humanitarian Technology Conference (KHI-HTC)

In today's interconnected business landscape, security is the cornerstone of all organizations, irrespective of their size or industry. This research emphasizes the critical need to safeguard organizational assets from cyber threats and highlights the pivotal role that firewalls play in fortifying network and cyber systems. The challenge lies in maintaining updated firewall defenses to prevent server downtime and the circumvention of security measures. To address these concerns, this study introduces a novel approach by integrating Cloud Wazuh, a user-friendly solution tailored for non-technical personnel, providing streamlined deployment and customizable security rules. Leveraging Wazuh suite of tools, particularly the Host-Based Intrusion Detection System (HIDS), the research detects and mitigates potential threats, including patterns associated with attacks such as Port Scanning, Denial of Service (DoS), and Metasploit. Additionally, Wazuh offers a range of features, from Security Analytics to File Integrity Monitoring, to comprehensively protect against cyber threats. While implementing Cloud Wazuh may entail initial costs, it proves cost-effective compared to maintaining a dedicated IT security team. This research underscores how Cloud Wazuh deployment serves as a pivotal tool for organizations looking to strengthen their security measures, safeguard their data, and ensure uninterrupted operations in an increasingly digital and interconnected world.