선박용 Security Information Event Management (SIEM) 개발을 위한 보안 정책 모델에 관한 연구
DC Field | Value | Language |
---|---|---|
dc.contributor.author | 손금준 | - |
dc.contributor.author | 안종우 | - |
dc.contributor.author | 이창식 | - |
dc.contributor.author | 강남선 | - |
dc.contributor.author | 김성록 | - |
dc.date.accessioned | 2025-01-08T07:00:10Z | - |
dc.date.available | 2025-01-08T07:00:10Z | - |
dc.date.issued | 2024-08 | - |
dc.identifier.issn | 1225-1143 | - |
dc.identifier.issn | 2287-7355 | - |
dc.identifier.uri | https://www.kriso.re.kr/sciwatch/handle/2021.sw.kriso/10684 | - |
dc.description.abstract | According to International Association of Classification Societies (IACS) Unified Requirement (UR) E26, ships contracted for construction after July 1, 2024 should be designed, constructed, commissioned and operated taking into account of cyber security. In particular, ship network monitoring tools should be installed in accordance with requirement 4.3.1 in IACS UR E26. In this paper, we propose a Security Information and Event Management (SIEM) security policy model for ships as an effective threat detection method by analyzing the cyber security regulations and ship network status in the maritime domain. For this purpose, we derived the items managed in the SIEM from the maritime cyber security regulations such as those of International Maritime Organization (IMO) and IACS, and defined 14 detection policies considering the status of the ship network. We also presents the detection policy for non-expert crews to understand it, and occurrence conditions depending on the ship's network environment to minimize indiscriminate alarms. We expect that the results of this study will help improve the efficiency of ship SIEM to be installed in the future. | - |
dc.format.extent | 11 | - |
dc.language | 한국어 | - |
dc.language.iso | KOR | - |
dc.publisher | 대한조선학회 | - |
dc.title | 선박용 Security Information Event Management (SIEM) 개발을 위한 보안 정책 모델에 관한 연구 | - |
dc.title.alternative | Research on Security Detection Policy Model in the SIEM for Ship | - |
dc.type | Article | - |
dc.publisher.location | 대한민국 | - |
dc.identifier.doi | 10.3744/SNAK.2024.61.4.278 | - |
dc.identifier.bibliographicCitation | 대한조선학회 논문집, v.61, no.4, pp 278 - 288 | - |
dc.citation.title | 대한조선학회 논문집 | - |
dc.citation.volume | 61 | - |
dc.citation.number | 4 | - |
dc.citation.startPage | 278 | - |
dc.citation.endPage | 288 | - |
dc.identifier.kciid | ART003107464 | - |
dc.description.isOpenAccess | N | - |
dc.description.journalRegisteredClass | kci | - |
dc.subject.keywordAuthor | SIEM(Security Information Event Management | - |
dc.subject.keywordAuthor | 보안 정보 및 이벤트 관리) | - |
dc.subject.keywordAuthor | Security(보안) | - |
dc.subject.keywordAuthor | Policy(정책) | - |
dc.subject.keywordAuthor | Traffic(트래픽) | - |
dc.subject.keywordAuthor | Event log(이벤트 로그) | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
(34103) 대전광역시 유성구 유성대로1312번길 32042-866-3114
COPYRIGHT 2021 BY KOREA RESEARCH INSTITUTE OF SHIPS & OCEAN ENGINEERING. ALL RIGHTS RESERVED.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.