OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats

Detalhes bibliográficos
Autor(a) principal: Carvalho, Vasco Samuel
Data de Publicação: 2016
Outros Autores: Polidoro, Maria João, Magalhães, João Paulo
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10400.22/10105
Resumo: ecurity reports published by leading companies reveal the growing number of cyber attacks. Thefts of money or sensitive data, harm the reputation of organizations and sabotage of national critical infrastructures are some of the motivations behind these attacks. The sophistication of these attacks is very high, creating major challenges to the detection and mitigation in useful time. In this context the development of systems to provide situational awareness, to detect cyber threats and alert them in real-time are very important to mitigate the impact of the attacks. In this paper we present a cyber threat platform targeted for real-time detection and visualization of cyber threats. The platform is composed by several building blocks and it is able to collect huge amounts of data from multiple sources, prepare and analyze the data and present the findings through a set of insightful dashboards. A version of the platform is already available and used in a real-context. It collects more than 107 million of malware events daily from different data sources and provides visualization and alerts in real-time for more than 2.7 million of infected unique IPs spread around the world.
id RCAP_866e57296ffffad57059d6914f0e3d99
oai_identifier_str oai:recipp.ipp.pt:10400.22/10105
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling OwlSight: Platform for Real-time Detection and Visualization of Cyber Threatscybersecuritythreat intelligencebig data securitybig data visualizationmalwareecurity reports published by leading companies reveal the growing number of cyber attacks. Thefts of money or sensitive data, harm the reputation of organizations and sabotage of national critical infrastructures are some of the motivations behind these attacks. The sophistication of these attacks is very high, creating major challenges to the detection and mitigation in useful time. In this context the development of systems to provide situational awareness, to detect cyber threats and alert them in real-time are very important to mitigate the impact of the attacks. In this paper we present a cyber threat platform targeted for real-time detection and visualization of cyber threats. The platform is composed by several building blocks and it is able to collect huge amounts of data from multiple sources, prepare and analyze the data and present the findings through a set of insightful dashboards. A version of the platform is already available and used in a real-context. It collects more than 107 million of malware events daily from different data sources and provides visualization and alerts in real-time for more than 2.7 million of infected unique IPs spread around the world.Institute of Electrical and Electronics EngineersRepositório Científico do Instituto Politécnico do PortoCarvalho, Vasco SamuelPolidoro, Maria JoãoMagalhães, João Paulo2017-07-19T15:14:36Z20162016-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10400.22/10105eng10400.22/10105metadata only accessinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-03-13T12:51:37Zoai:recipp.ipp.pt:10400.22/10105Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T17:30:34.677152Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
title OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
spellingShingle OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
Carvalho, Vasco Samuel
cybersecurity
threat intelligence
big data security
big data visualization
malware
title_short OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
title_full OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
title_fullStr OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
title_full_unstemmed OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
title_sort OwlSight: Platform for Real-time Detection and Visualization of Cyber Threats
author Carvalho, Vasco Samuel
author_facet Carvalho, Vasco Samuel
Polidoro, Maria João
Magalhães, João Paulo
author_role author
author2 Polidoro, Maria João
Magalhães, João Paulo
author2_role author
author
dc.contributor.none.fl_str_mv Repositório Científico do Instituto Politécnico do Porto
dc.contributor.author.fl_str_mv Carvalho, Vasco Samuel
Polidoro, Maria João
Magalhães, João Paulo
dc.subject.por.fl_str_mv cybersecurity
threat intelligence
big data security
big data visualization
malware
topic cybersecurity
threat intelligence
big data security
big data visualization
malware
description ecurity reports published by leading companies reveal the growing number of cyber attacks. Thefts of money or sensitive data, harm the reputation of organizations and sabotage of national critical infrastructures are some of the motivations behind these attacks. The sophistication of these attacks is very high, creating major challenges to the detection and mitigation in useful time. In this context the development of systems to provide situational awareness, to detect cyber threats and alert them in real-time are very important to mitigate the impact of the attacks. In this paper we present a cyber threat platform targeted for real-time detection and visualization of cyber threats. The platform is composed by several building blocks and it is able to collect huge amounts of data from multiple sources, prepare and analyze the data and present the findings through a set of insightful dashboards. A version of the platform is already available and used in a real-context. It collects more than 107 million of malware events daily from different data sources and provides visualization and alerts in real-time for more than 2.7 million of infected unique IPs spread around the world.
publishDate 2016
dc.date.none.fl_str_mv 2016
2016-01-01T00:00:00Z
2017-07-19T15:14:36Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10400.22/10105
url http://hdl.handle.net/10400.22/10105
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 10400.22/10105
dc.rights.driver.fl_str_mv metadata only access
info:eu-repo/semantics/openAccess
rights_invalid_str_mv metadata only access
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Institute of Electrical and Electronics Engineers
publisher.none.fl_str_mv Institute of Electrical and Electronics Engineers
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1799131401698672640

Registros relacionados