论文信息 - Network Traffic and Security Event Collecting System

Network Traffic and Security Event Collecting System

In the beginning stage of the security functions, defending and monitoring was treated as a single solution. Today’s security management system has reached at the state of integration of risk management systems and security management system. However, the existing system can have negatively leak of internal information and be inefficient for prevention and post event tracing of security instance. Therefore if we formalize the event information from a variety of security systems and do correlation analysis, we can establish a more active defense. In this paper we built up a developmental environment for network management system using a customized Linux System and several network devices. Using SNMP and SYSLOG, network information are collected from the network equipment and recorded on Maria DB in Linux Server. We also developed a database system and a monitoring system for the collected data.

Sanggon Lee | Hee-Seung Son | Jin-Heung Lee | Tae-Yong Kim

[1] Chris Phillips,et al. Logging and Log Management: The Authoritative Guide to Understanding the Concepts Surrounding Logging and Log Management , 2012 .