Detailed Information

Cited 0 time in webofscience Cited 0 time in scopus
Metadata Downloads

선박용 Security Information Event Management (SIEM) 개발을 위한 보안 정책 모델에 관한 연구

Full metadata record
DC Field Value Language
dc.contributor.author손금준-
dc.contributor.author안종우-
dc.contributor.author이창식-
dc.contributor.author강남선-
dc.contributor.author김성록-
dc.date.accessioned2025-01-08T07:00:10Z-
dc.date.available2025-01-08T07:00:10Z-
dc.date.issued2024-08-
dc.identifier.issn1225-1143-
dc.identifier.issn2287-7355-
dc.identifier.urihttps://www.kriso.re.kr/sciwatch/handle/2021.sw.kriso/10684-
dc.description.abstractAccording to International Association of Classification Societies (IACS) Unified Requirement (UR) E26, ships contracted for construction after July 1, 2024 should be designed, constructed, commissioned and operated taking into account of cyber security. In particular, ship network monitoring tools should be installed in accordance with requirement 4.3.1 in IACS UR E26. In this paper, we propose a Security Information and Event Management (SIEM) security policy model for ships as an effective threat detection method by analyzing the cyber security regulations and ship network status in the maritime domain. For this purpose, we derived the items managed in the SIEM from the maritime cyber security regulations such as those of International Maritime Organization (IMO) and IACS, and defined 14 detection policies considering the status of the ship network. We also presents the detection policy for non-expert crews to understand it, and occurrence conditions depending on the ship's network environment to minimize indiscriminate alarms. We expect that the results of this study will help improve the efficiency of ship SIEM to be installed in the future.-
dc.format.extent11-
dc.language한국어-
dc.language.isoKOR-
dc.publisher대한조선학회-
dc.title선박용 Security Information Event Management (SIEM) 개발을 위한 보안 정책 모델에 관한 연구-
dc.title.alternativeResearch on Security Detection Policy Model in the SIEM for Ship-
dc.typeArticle-
dc.publisher.location대한민국-
dc.identifier.doi10.3744/SNAK.2024.61.4.278-
dc.identifier.bibliographicCitation대한조선학회 논문집, v.61, no.4, pp 278 - 288-
dc.citation.title대한조선학회 논문집-
dc.citation.volume61-
dc.citation.number4-
dc.citation.startPage278-
dc.citation.endPage288-
dc.identifier.kciidART003107464-
dc.description.isOpenAccessN-
dc.description.journalRegisteredClasskci-
dc.subject.keywordAuthorSIEM(Security Information Event Management-
dc.subject.keywordAuthor보안 정보 및 이벤트 관리)-
dc.subject.keywordAuthorSecurity(보안)-
dc.subject.keywordAuthorPolicy(정책)-
dc.subject.keywordAuthorTraffic(트래픽)-
dc.subject.keywordAuthorEvent log(이벤트 로그)-
Files in This Item
There are no files associated with this item.
Appears in
Collections
ETC > 1. Journal Articles

qrcode

Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.

Altmetrics

Total Views & Downloads

BROWSE