Security Information and Event Monitoring as a Service: a Survey on Current Concerns and Solutions
Key: WLRS14-1
Author: Olga Wenge, Ulrich Lampe, Christoph Rensing, Ralf Steinmetz
Date: June 2014
Kind: @article
Abstract: Today’s cloud environments are very heterogeneous. Current security approaches of intrusion detection, prevention, and response in physical environments are sophisticated. However, the growth of virtualization and multi-tenant technologies is creating new targets for intrusion and raises many questions about the implementation of the same protection in cloud environments. As an answer to the clouds’ heterogeneity, the heterogeneity of cloud security solutions is presented, which causes market confusion and brings more complexity in the selection process of sound security solutions. As not every enterprise has in-house tools, competences and expertise to secure cloud environments on its own, Security as a Service (SecaaS) solutions are becoming more popular, promising cost-savings and proper real-time threats detection and prevention. In our paper, we outline the current research areas in SecaaS, especially Security Information and Event Management (SIEM). Furthermore, we discuss requirements and concerns related to implementation of SIEM as a service and identify challenges for further research.
View Full paper (PDF) | Download Full paper (PDF)
Official URL

The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a non-commercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, not withstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.