Publication Details
TARZAN: An Integrated Platform for Security Analysis
Security, Big data, Framework
In this paper, we present the TARZAN platform, an integrated platform for
analysis of digital data from security incidents. The platform serves primarily
as a middleware between data sources and data processing applications, however,
it also provides several supporting services and a runtime environment for the
applications. The supporting services, such as a data storage, a resource and
application registry, a synchronization service, and a distributed computing
platform, are utilized by the TARZAN applications for various security-oriented
analyses on the integrated data ranging from an IT security incident detection to
inference analyses of data from social networks or crypto-currency transactions.
To cope with a large amount of distributed data, both streamed in real-time and
stored, and the need of a large scale distributed computing, the platform has
been designed as a Big Data processing system ensuring reliable, scalable, and
cost-effective solution. The platform is demonstrated on the case of a security
analysis of network traffic.
@inproceedings{BUT144436,
author="Marek {Rychlý} and Ondřej {Ryšavý}",
title="TARZAN: An Integrated Platform for Security Analysis",
booktitle="Proceedings of the 2017 Federated Conference on Computer Science and Information Systems",
year="2017",
series="Annals of Computer Science and Information Systems, Volume 11",
pages="561--567",
publisher="IEEE Computer Society",
address="Praha",
doi="10.15439/2017F280",
isbn="978-83-946253-7-5",
url="http://ieeexplore.ieee.org/document/8104600/"
}