{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,31]],"date-time":"2024-10-31T02:53:59Z","timestamp":1730343239341,"version":"3.28.0"},"reference-count":32,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,10]]},"DOI":"10.23919\/cnsm46954.2019.9012707","type":"proceedings-article","created":{"date-parts":[[2020,2,28]],"date-time":"2020-02-28T09:56:25Z","timestamp":1582883785000},"page":"1-5","source":"Crossref","is-referenced-by-count":0,"title":["WASPP: Workflow Automation for Security Policy Procedures"],"prefix":"10.23919","author":[{"given":"Ren","family":"Quinn","sequence":"first","affiliation":[]},{"given":"Nico","family":"Holguin","sequence":"additional","affiliation":[]},{"given":"Ben","family":"Poster","sequence":"additional","affiliation":[]},{"given":"Corey","family":"Roach","sequence":"additional","affiliation":[]},{"given":"Jacobus Kobus Van der","family":"Merwe","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/1807167.1807234"},{"key":"ref31","first-page":"345","article-title":"Vast: A unified platform for interactive network forensics","author":"vallentin","year":"2016","journal-title":"NSDI"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/UBMK.2017.8093473"},{"article-title":"How siem correlation rules work","year":"2018","author":"crawley","key":"ref10"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2017.12.001"},{"article-title":"The elasticsearch siem architecture of a nonprofit: Security at the nature conservancy","year":"2017","author":"eshagh","key":"ref12"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/1921151.1921160"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/1592681.1592683"},{"key":"ref15","article-title":"Magic quadrant for security information and event management","author":"kavanagh","year":"2015","journal-title":"Research note Gartner Group"},{"key":"ref16","first-page":"1","article-title":"Kafka: A distributed messaging system for log processing","author":"kreps","year":"2011","journal-title":"Proceedings of the NetDB"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/2038916.2038942"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/1142473.1142485"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/1592761.1592785"},{"key":"ref28","first-page":"40","article-title":"Successful siem and log management strategies for audit and compliance","volume":"4","author":"swift","year":"2010"},{"journal-title":"Spark Streaming","year":"0","key":"ref4"},{"article-title":"Towards an intelligent security event information management system","year":"2014","author":"suarez-tangil","key":"ref27"},{"journal-title":"SAMZA","year":"0","key":"ref3"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2014.103"},{"article-title":"Get over siem event normalization","year":"2017","author":"teixeira","key":"ref29"},{"journal-title":"Storm","year":"0","key":"ref5"},{"key":"ref8","article-title":"Knowops: Towards an embedded knowledge base for network management and operations","author":"chen","year":"2011","journal-title":"Hot-ICE"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/1921168.1921176"},{"journal-title":"Flink","year":"0","key":"ref2"},{"article-title":"Lets define “siem","year":"2017","author":"chuvakin","key":"ref9"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1145\/1755913.1755937"},{"key":"ref20","first-page":"519","article-title":"Tierless programming and reasoning for software-defined networks","author":"nelson","year":"2014","journal-title":"Proceedings of the 11th USENIX Conference on Networked Systems Design and Implementation"},{"article-title":"Goodbye siem, hello soapa","year":"2016","author":"oltsik","key":"ref22"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ITMQIS.2017.8085770"},{"article-title":"Siem what next?","year":"2017","author":"sathye","key":"ref24"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.02.001"},{"article-title":"Future of the siem","year":"2017","author":"sheridan","key":"ref26"},{"key":"ref25","first-page":"1033","article-title":"Declarative information extraction using datalog with embedded extraction predicates","author":"shen","year":"2007","journal-title":"Proceedings of the 33rd International Conference on Very Large Data Bases Ser VLDB '07"}],"event":{"name":"2019 15th International Conference on Network and Service Management (CNSM)","start":{"date-parts":[[2019,10,21]]},"location":"Halifax, NS, Canada","end":{"date-parts":[[2019,10,25]]}},"container-title":["2019 15th International Conference on Network and Service Management (CNSM)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8977268\/9012657\/09012707.pdf?arnumber=9012707","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,10]],"date-time":"2020-04-10T03:55:46Z","timestamp":1586490946000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9012707\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,10]]},"references-count":32,"URL":"https:\/\/doi.org\/10.23919\/cnsm46954.2019.9012707","relation":{},"subject":[],"published":{"date-parts":[[2019,10]]}}}