English
Related papers

Related papers: How do information security workers use host data?…

200 papers

Security operation centers (SOCs) all over the world are tasked with reacting to cybersecurity alerts ranging in severity. Security Orchestration, Automation, and Response (SOAR) tools streamline cybersecurity alert responses by SOC…

Human-Computer Interaction · Computer Science 2021-12-02 Savannah Norem , Ashley E Rice , Samantha Erwin , Robert A Bridges , Sean Oesch , Brian Weber

Modern security operation centers (SOCs) rely on operators and a tapestry of logging and alerting tools with large scale collection and query abilities. SOC investigations are tedious as they rely on manual efforts to query diverse data…

The increasing dependency of modern society on IT systems and infrastructures for essential services (e.g. internet banking, vehicular network, health-IT, etc.) coupled with the growing number of cyber incidents and security vulnerabilities…

Cryptography and Security · Computer Science 2022-02-09 Cyril Onwubiko , Karim Ouazzane

In Security Operations Centres (SOCs) security practitioners work using a range of tools to detect and mitigate malicious computer-network activity. Sonification, in which data is represented as sound, is said to have potential as an…

Human-Computer Interaction · Computer Science 2018-07-19 Louise M. Axon , Bushra Alahmadi , Jason R. C. Nurse , Michael Goldsmith , Sadie Creese

Security Operations Centers (SOCs) are pivotal in modern enterprises. Tasked to monitor complex network environments constantly under attack, SOCs can be active 24/7 and can include hundreds of operators supported by state-of-the-art…

Cryptography and Security · Computer Science 2026-04-27 Jessica Moosmann , Irdin Pekaric , Giovanni Apruzzese

The integration of Large Language Models (LLMs) into Security Operations Centres (SOCs) presents a transformative, yet still evolving, opportunity to reduce analyst workload through human-AI collaboration. However, their real-world…

Cryptography and Security · Computer Science 2025-09-22 Ronal Singh , Shahroz Tariq , Fatemeh Jalalvand , Mohan Baruwal Chhetri , Surya Nepal , Cecile Paris , Martin Lochner

The internet landscape is growing and at the same time becoming more heterogeneous. Services are performed via computers and networks, critical data is stored digitally. This enables freedom for the user, and flexibility for operators. Data…

Cryptography and Security · Computer Science 2020-12-17 Simon D Duque Anton , Daniel Fraunholz , Daniel Schneider

Software security incidents occur everyday and thousands of software security reports are announced each month. Thus, it is difficult for software security researchers, engineers, and other stakeholders to follow software security topics of…

Software Engineering · Computer Science 2024-09-30 Phong Minh Vu , Tung Thanh Nguyen

Offensive security-tests are a common way to pro-actively discover potential vulnerabilities. They are performed by specialists, often called penetration-testers or white-hat hackers. The chronic lack of available white-hat hackers prevents…

Software Engineering · Computer Science 2023-08-24 Andreas Happe , Jürgen Cito

This study evaluates the application of predictive analytics for real-time cyber-attack detection and response, focusing on how statistical and machine learning methods can improve decision-making in Security Operations Centers (SOCs).…

Cryptography and Security · Computer Science 2025-09-03 Muhammad Danish

Technology for security operations centers (SOCs) has a storied history of slow adoption due to concerns about trust and reliability. These concerns are amplified with artificial intelligence, particularly large language models (LLMs),…

Cryptography and Security · Computer Science 2026-04-24 Francis Hahn , Mohd Mamoon , Alexandru G. Bardas , Michael Collins , Daniel Lende , Xinming Ou , S. Raj Rajagopalan

This survey focuses on intrusion detection systems (IDS) that leverage host-based data sources for detecting attacks on enterprise network. The host-based IDS (HIDS) literature is organized by the input data source, presenting targeted…

Cryptography and Security · Computer Science 2018-05-18 Tarrah R. Glass-Vanderlan , Michael D. Iannacone , Maria S. Vincent , Qian , Chen , Robert A. Bridges

Objective: This work describes the topic modelling of Security Operations Centre (SOC) use of a large language model (LLM), during live security operations. The goal is to better understand how these specialists voluntarily use this tool.…

Cryptography and Security · Computer Science 2025-08-27 Martin Lochner , Keegan Keplinger

Many Security Operations Centers (SOCs) today still heavily rely on signature-based Network Intrusion Detection Systems (NIDS) such as Suricata. The specificity of intrusion detection rules and the coverage provided by rulesets are common…

Cryptography and Security · Computer Science 2025-01-20 Koen T. W. Teuwen , Tom Mulders , Emmanuele Zambon , Luca Allodi

In this paper, we study seven well-known trace analysis techniques both from the hardware and software domain and discuss their performance on communication-centric system-on-chip (SoC) traces. SoC traces are usually huge in size and…

Distributed, Parallel, and Cluster Computing · Computer Science 2023-08-11 Md Rubel Ahmed , Hao Zheng

Background: Security tools play a vital role in enabling developers to build secure software. However, it can be quite challenging to introduce and fully leverage security tools without affecting the speed or frequency of deployments in the…

Cryptography and Security · Computer Science 2021-07-20 Roshan Namal Rajapakse , Mansooreh Zahedi , Muhammad Ali Babar

Security Operations Centers (SOCs) face growing challenges in managing cybersecurity threats due to an overwhelming volume of alerts, a shortage of skilled analysts, and poorly integrated tools. Human-AI collaboration offers a promising…

Cryptography and Security · Computer Science 2025-05-13 Massimiliano Albanese , Xinming Ou , Kevin Lybarger , Daniel Lende , Dmitry Goldgof

Critical and sophisticated cyberattacks often take multitudes of reconnaissance, exploitations, and obfuscation techniques to penetrate through well protected enterprise networks. The discovery and detection of attacks, though needing…

Cryptography and Security · Computer Science 2021-03-26 Shanchieh Jay Yang , Ahmet Okutan , Gordon Werner , Shao-Hsuan Su , Ayush Goel , Nathan D. Cahill

In recent years, technology has advanced considerably with the introduction of many systems including advanced robotics, big data analytics, cloud computing, machine learning and many more. The opportunities to exploit the yet to come…

Cryptography and Security · Computer Science 2023-11-21 Sam Wen Ping , Jeffrey Cheok Jun Wah , Lee Wen Jie , Jeremy Bong Yong Han , Saira Muzafar

Enterprises are constantly under attack from sophisticated adversaries. These adversaries use a variety of techniques to first gain access to the enterprise, then spread laterally inside its networks, establish persistence, and finally…

Cryptography and Security · Computer Science 2024-06-14 Sumanth Rao
‹ Prev 1 2 3 10 Next ›