Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j

Ricardo Hormann; Daniel Bokelmann; Frank Ortmeier

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j

Topics: Artificial Intelligence; Intrusion and detection techniques; Software engineering for security modeling, business process modeling and analytics

In Proceedings of the 8th International Conference on Internet of Things, Big Data and Security IoTBDS - Volume 1, 51-60, 2023 , Prague, Czech Republic

Authors: Ricardo Hormann ¹ ; Daniel Bokelmann ² and Frank Ortmeier ²

Affiliations: ¹ Volkswagen AG, Wolfsburg, Germany ; ² Otto-von-Guericke-University, Faculty of Computer Science, Magdeburg, Germany

Keyword(s): Industry 4.0, Cybersecurity, Industrial Networks, Self-Organizing Maps, Log4j.

Abstract: Concepts such as Industry 4.0 are challenging the IT security of Industrial Control Networks (ICN) due to growing connectivity with insecure networks, such as corporate networks. Vulnerable devices within the ICN need to be protected by monitoring tools such as Intrusion Detection Systems (IDS). These tools not only provide information on suspicious traffic data observed, but also assess the semantics of an attack. Given the large number of security events generated by these systems, security analysts may overlook important annotations. This work attempts to leverage semantic annotations in combination with traffic and temporal information, using unsupervised machine learning methods (Self-Organizing Maps), to facilitate processing in the Security Operation Center. Instead of handling individual security events, our approach provides groups of heterogeneous security events leading to prototypical scenarios and classified and reusable use cases that only need to be analyzed once. We e valuate our approach using a non-synthetic dataset generated on a shop floor in the automotive sector, focusing on security events related to the Log4j vulnerability. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.118.227.199

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Hormann, R.; Bokelmann, D. and Ortmeier, F. (2023). Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j. In Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS; ISBN 978-989-758-643-9; ISSN 2184-4976, SciTePress, pages 51-60. DOI: 10.5220/0011839900003482

@conference{iotbds23,
author={Ricardo Hormann. and Daniel Bokelmann. and Frank Ortmeier.},
title={Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j},
booktitle={Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS},
year={2023},
pages={51-60},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011839900003482},
isbn={978-989-758-643-9},
issn={2184-4976},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Internet of Things, Big Data and Security - IoTBDS
TI - Analysis of Security Events in Industrial Networks Using Self-Organizing Maps by the Example of Log4j
SN - 978-989-758-643-9
IS - 2184-4976
AU - Hormann, R.
AU - Bokelmann, D.
AU - Ortmeier, F.
PY - 2023
SP - 51
EP - 60
DO - 10.5220/0011839900003482
PB - SciTePress