Detail výsledku
TARZAN: An Integrated Platform for Security Analysis
In this paper, we present the TARZAN platform, an integrated platform for analysis of digital data from security incidents. The platform serves primarily as a middleware between data sources and data processing applications, however, it also provides several supporting services and a runtime environment for the applications. The supporting services, such as a data storage, a resource and application registry, a synchronization service, and a distributed computing platform, are utilized by the TARZAN applications for various security-oriented analyses on the integrated data ranging from an IT security incident detection to inference analyses of data from social networks or crypto-currency transactions. To cope with a large amount of distributed data, both streamed in real-time and stored, and the need of a large scale distributed computing, the platform has been designed as a Big Data processing system ensuring reliable, scalable, and cost-effective solution. The platform is demonstrated on the case of a security analysis of network traffic.
Security, Big data, Framework
@inproceedings{BUT144436,
author="Marek {Rychlý} and Ondřej {Ryšavý}",
title="TARZAN: An Integrated Platform for Security Analysis",
booktitle="Proceedings of the 2017 Federated Conference on Computer Science and Information Systems",
year="2017",
series="Annals of Computer Science and Information Systems, Volume 11",
pages="561--567",
publisher="IEEE Computer Society",
address="Praha",
doi="10.15439/2017F280",
isbn="978-83-946253-7-5",
url="http://ieeexplore.ieee.org/document/8104600/"
}IT4Innovations excellence in science, MŠMT, Národní program udržitelnosti II, LQ1602, zahájení: 2016-01-01, ukončení: 2020-12-31, ukončen