Communications of the ACM
Cyberattack-Alert System Could Be Model For U.s.
Washington is in the process of deploying a statewide system that will provide early warnings about cybersecurity threats to participating organizations and the U.S. Department of Homeland Security (DHS). The Public Regional Information Security Event Management (PRISEM) system will consist of security and information event management (SIEM) equipment deployed on local security and network gear at participating organizations, including local and state agencies. The SIEM equipment would be used to send security event information to the central PRISEM aggregation point, where it is analyzed and shared with other PRISEM participants in a confidential manner. In addition, the analysis data will be shared with DHS.
The system, which is the first of its kind in the United States and could be replicated in other states, is expected to provide participating organizations with early warnings about cyberattacks and botnet activities. It is expected to be particularly beneficial for smaller cities, since it will enable them to have a sense of what type of cybersecurity threats are affecting networks in the state without deploying their own SIEM.
Several cities and local organizations are in talks to participate in PRISEM, including the Port of Seattle and the Port of Tacoma, as well as several private companies.
From Network World
View Full Article
Abstracts Copyright © 2011 Information Inc., Bethesda, Maryland, USA
No entries found