Present and Future of Network Security Monitoring
Network Security Monitoring (NSM) is a popular term to refer to the detection of security incidents by monitoring the network events. An NSM system is central for the security of current networks, given the escalation in sophistication of cyberwarfare. In this paper, we review the state-of-the-art i...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2021-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/9381201/ |
| _version_ | 1818611581913661440 |
|---|---|
| author | Marta Fuentes-Garcia Jose Camacho Gabriel Macia-Fernandez |
| author_facet | Marta Fuentes-Garcia Jose Camacho Gabriel Macia-Fernandez |
| author_sort | Marta Fuentes-Garcia |
| collection | DOAJ |
| description | Network Security Monitoring (NSM) is a popular term to refer to the detection of security incidents by monitoring the network events. An NSM system is central for the security of current networks, given the escalation in sophistication of cyberwarfare. In this paper, we review the state-of-the-art in NSM, and derive a new taxonomy of the functionalities and modules in an NSM system. This taxonomy is useful to assess current NSM deployments and tools for both researchers and practitioners. We organize a list of popular tools according to this new taxonomy, and identify challenges in the application of NSM in modern network deployments, like Software Defined Network (SDN) and Internet of Things (IoT). |
| first_indexed | 2024-12-16T15:32:37Z |
| format | Article |
| id | doaj.art-01df42cb645c4faba1cd5c8be3902eb0 |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-12-16T15:32:37Z |
| publishDate | 2021-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-01df42cb645c4faba1cd5c8be3902eb02022-12-21T22:26:17ZengIEEEIEEE Access2169-35362021-01-01911274411276010.1109/ACCESS.2021.30671069381201Present and Future of Network Security MonitoringMarta Fuentes-Garcia0https://orcid.org/0000-0002-7428-1277Jose Camacho1https://orcid.org/0000-0001-9804-8122Gabriel Macia-Fernandez2https://orcid.org/0000-0001-9256-453XFundación I+D del Software Libre (Fidesol), Granada, SpainDepartment of Signal Theory, Telematics and Communications, CITIC-UGR, University of Granada, Granada, SpainDepartment of Signal Theory, Telematics and Communications, CITIC-UGR, University of Granada, Granada, SpainNetwork Security Monitoring (NSM) is a popular term to refer to the detection of security incidents by monitoring the network events. An NSM system is central for the security of current networks, given the escalation in sophistication of cyberwarfare. In this paper, we review the state-of-the-art in NSM, and derive a new taxonomy of the functionalities and modules in an NSM system. This taxonomy is useful to assess current NSM deployments and tools for both researchers and practitioners. We organize a list of popular tools according to this new taxonomy, and identify challenges in the application of NSM in modern network deployments, like Software Defined Network (SDN) and Internet of Things (IoT).https://ieeexplore.ieee.org/document/9381201/Network securityNSMsecurity monitoringincident detectionincident responseSDN |
| spellingShingle | Marta Fuentes-Garcia Jose Camacho Gabriel Macia-Fernandez Present and Future of Network Security Monitoring IEEE Access Network security NSM security monitoring incident detection incident response SDN |
| title | Present and Future of Network Security Monitoring |
| title_full | Present and Future of Network Security Monitoring |
| title_fullStr | Present and Future of Network Security Monitoring |
| title_full_unstemmed | Present and Future of Network Security Monitoring |
| title_short | Present and Future of Network Security Monitoring |
| title_sort | present and future of network security monitoring |
| topic | Network security NSM security monitoring incident detection incident response SDN |
| url | https://ieeexplore.ieee.org/document/9381201/ |
| work_keys_str_mv | AT martafuentesgarcia presentandfutureofnetworksecuritymonitoring AT josecamacho presentandfutureofnetworksecuritymonitoring AT gabrielmaciafernandez presentandfutureofnetworksecuritymonitoring |