52ky 发表于 2022-9-14 16:53:23

深度剖析SOC高性能实时事件关联分析引擎

安全管理方式(SOC)的一项关键技术即是事情相关分析。凭借实时的事情相关分析引擎,安全管理方式可以发掘出杂乱的海量安全日志和事情背面隐藏的信息,引导安全管理人员发现外部侵/入和内部违规行为。作为本系列的第五篇文章,将深入为大家分析安全管理系统的相关分析引擎技术架构,并向读者展现相关分析的价值和前景。
深度分析SOC高性能实时事情相关分析引擎.doc

(A key technique of Security Management (SOC) is event-related analysis. With the real-time event-related analysis engine, the security management method can unearth the messy and massive security logs and the hidden information behind the events, and guide the security managers to discover external intrusions/intrusions and internal violations. As the fifth article in this series, I will deeply analyze the technical architecture of the relevant analysis engine of the safety management system, and show readers the value and prospects of the relevant analysis.
In-depth analysis of SOC high-performance real-time event-related analysis engine.doc)




页: [1]
查看完整版本: 深度剖析SOC高性能实时事件关联分析引擎