Write a Blog >>
ECSA 2020
Mon 14 - Fri 18 September 2020 L'Aquila, Italy

Abstract. Security Operation Centers (SOC) leverage a number of tools to de-tect, thwart and deal with security attacks. One of the key challenges of SOC is to quickly integrate security tools and operational activities. To address this chal-lenge, an increasing number of organizations are using Security Orchestration, Automation and Response (SOAR) platforms, whose design needs suitable ar-chitectural support. This paper presents our work on architecture-centric support for designing SOAR platform. Our approach consists of a conceptual map of SOAR platform and the key dimensions of an architecture design space. We have demonstrated the use of the approach in designing and implementing a Proof of Concept (PoC) SOAR platform for (i) automated integration of security tools and (ii) automated interpretation of activities to execute incident response processes. We also report a preliminary evaluation of the proposed architectural support for improving a SOAR’s design.

Thu 17 Sep

Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

14:30 - 15:30
S8: Performance and SecurityPaper Presentations / Journal First / Industry Program / Workshops / Research Papers / JSS Special Issue / Doctoral Symposium / Gender Diversity in SA / Tool Demos / Social at ECSA 2020 Teams Channel
Chair(s): Barbora Buhnova Masaryk University, Nicole Levy Conservatoire National des Arts et Métiers

Virtualization support: Roberta Capuano

Architecture-centric Support for Integrating Security Tool in a Security Orchestration PlatformResearch Track
Research Papers
Chadni Islam The University of Adelaide, Muhammad Ali Babar , Surya Nepal CSIRO
Securing Software Ecosystem Architectures: Challenges and OpportunitiesJournal-First
Journal First
Walt Scacchi University of California, Irvine, Thomas Alspaugh University of California, Irvine
Data Stream Operations as First-Class Entities in Component-Based Performance ModelsResearch Track
Research Papers
Dominik Werle Karlsruhe Institute of Technology, Stephan Seifermann Karlsruhe Institute of Technology, Anne Koziolek Karlsruhe Institute of Technology
File Attached