Building a new framework for advanced security analysis. Ideas, plans and thoughts from UNINETT

Arne  Øslebø
TrackTrack 3
DescriptionThe amount of data that a security team collects is increasing rapidly. All this data needs to be enriched and correlated for effective analysis. UNINETT has for the last few months evaluated various tools that can be used for this and in this presentation we will give an overview of what we have learned and present details about the solution we have selected.