Abstract
This article suggests an approach to building systems for analyzing security incidents in the Internet of Things as a self-similar system within the ambit of the normal operation of its constituent objects. The graph model of the Internet of Things as a cyberphysical system has been developed and used as basis to prove that the analysis of paired relations selected from a discrete message stream from devices will be enough to detect security incidents.
Similar content being viewed by others
References
Spimes, L.B.V., Cyber-physical systems and Industry 4.0. http://internetofthings.ru/startups/75-internet-veshchej-shag-za-shagom. Cited April 18, 2016.
Vasil'ev, Y.S., Zegzhda, P.D., and Zegzhda, D.P., Ensuring the safety of automated process control systems in hydropower facilities, Izv. Ross. Akad. Nauk, Ser. Energ., 2016, no. 3.
Lavrova, D. and Pechenkin, A. Applying correlation and regression analysis methods for security incidents detection in the Internet of Things, Int. J. Commun. Networks Inf. Secur., 2015, vol. 7, no. 3, pp. 131–137.
Lavrova, D.S. and Poltavtseva, M.A., Event simulation in the Internet of Things and design of directories of hardware metadata, Sb. Materialov 24-i nauchno-tekhnicheskoi konferentsii “Metody i tekhnicheskie sredstva obespecheniya bezopasnosti informatsii” (Coll. Materials of the 24th Scientific and Technical Conference Methods and Technical Tools of Information Security), St. Petersburg, 2015, pp. 26–28.
Poltavtseva, M.A., Normalization of data of the Internet of Things in the system of detection of security incidents, Sb. Materialov 24-i nauchno-tekhnicheskoi konferentsii “Metody i tekhnicheskie sredstva obespecheniya bezopasnosti informatsii” (Coll. Materials of the 24th Scientific and Technical Conference Methods and Technical Tools of Information Security), St. Petersburg, 2015, pp. 29–31.
Pechenkin, A., Poltavtseva, M., and Lavrova, D., An approach to data normalization in the Internet of Things for security analysis, Software Syst., 2016, no. 2 (114). doi 10.15827/0236-235X.114.027-031
Trenogin, N.G. and Sokolov, D.E., Fractal properties of the network traffic in a client-server traffic information system, Materialy Mezhdunarodnoi nauchno-tekhnicheskoi konferentsii “Informatika i problemy telekommunikatsii” (Proc. Int. Sci.-Tech. Conf. Information and Telecommunication Problems), Novosibirsk, 2001, pp. 34–35.
Pozdnyak, I.S. and Buranova, M.A., A study of network traffic for the degree of self-similarity, Metodicheskie ukazaniya “Issledovanie setevogo trafika na stepen’ samopodobiya” (Guidelines on the Investigation of Network Traffic for the Degree of Self-Similarity), Samara: PGUTI, 2013.
Butakov, V. and Grakovskii, A., Evaluation of stochasticity of time series of arbitrary origin by means of the Hurst exponent, Comput. Model. New Technol., 2005, vol. 9, no. 2, pp. 27–32.
Principal Manifolds for Data Visualisation and Dimension Reduction, Gorban, A.N., Kegl, B., Wunsch, D., and Zinovyev, A.Y., Eds., Springer, 2007.
Author information
Authors and Affiliations
Corresponding author
Additional information
Original Russian Text © D.S. Lavrova, 2016, published in Problemy Informatsionnoi Bezopasnosti, Komp’yuternye Sistemy.
About this article
Cite this article
Lavrova, D.S. An approach to developing the SIEM system for the Internet of Things. Aut. Control Comp. Sci. 50, 673–681 (2016). https://doi.org/10.3103/S0146411616080125
Received:
Published:
Issue Date:
DOI: https://doi.org/10.3103/S0146411616080125