{"id":"https://openalex.org/W4296856696","doi":"https://doi.org/10.1108/ics-09-2021-0146","title":"Open source SIEM solutions for an enterprise","display_name":"Open source SIEM solutions for an enterprise","publication_year":2022,"publication_date":"2022-09-23","ids":{"openalex":"https://openalex.org/W4296856696","doi":"https://doi.org/10.1108/ics-09-2021-0146"},"language":"en","primary_location":{"id":"doi:10.1108/ics-09-2021-0146","is_oa":false,"landing_page_url":"https://doi.org/10.1108/ics-09-2021-0146","pdf_url":null,"source":{"id":"https://openalex.org/S4210195545","display_name":"Information and Computer Security","issn_l":"2056-4961","issn":["2056-4961","2056-497X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5017083303","display_name":"Aamna Tariq","orcid":null},"institutions":[{"id":"https://openalex.org/I899713450","display_name":"Air University","ror":"https://ror.org/03yfe9v83","country_code":"PK","type":"education","lineage":["https://openalex.org/I899713450"]}],"countries":["PK"],"is_corresponding":true,"raw_author_name":"Aamna Tariq","raw_affiliation_strings":["National Center for Cyber Security, Air University, Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National Center for Cyber Security, Air University, Islamabad, Pakistan","institution_ids":["https://openalex.org/I899713450"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061041971","display_name":"Jawad Manzoor","orcid":"https://orcid.org/0000-0002-1541-0972"},"institutions":[{"id":"https://openalex.org/I899713450","display_name":"Air University","ror":"https://ror.org/03yfe9v83","country_code":"PK","type":"education","lineage":["https://openalex.org/I899713450"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Jawad Manzoor","raw_affiliation_strings":["National Center for Cyber Security, Air University, Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National Center for Cyber Security, Air University, Islamabad, Pakistan","institution_ids":["https://openalex.org/I899713450"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089596239","display_name":"Muhammad Ammar Aziz","orcid":null},"institutions":[{"id":"https://openalex.org/I899713450","display_name":"Air University","ror":"https://ror.org/03yfe9v83","country_code":"PK","type":"education","lineage":["https://openalex.org/I899713450"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Muhammad Ammar Aziz","raw_affiliation_strings":["National Center for Cyber Security, Air University, Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National Center for Cyber Security, Air University, Islamabad, Pakistan","institution_ids":["https://openalex.org/I899713450"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047527466","display_name":"Zain Ul Abideen Tariq","orcid":"https://orcid.org/0009-0006-1321-2995"},"institutions":[{"id":"https://openalex.org/I899713450","display_name":"Air University","ror":"https://ror.org/03yfe9v83","country_code":"PK","type":"education","lineage":["https://openalex.org/I899713450"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Zain Ul Abideen Tariq","raw_affiliation_strings":["National Center for Cyber Security, Air University, Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National Center for Cyber Security, Air University, Islamabad, Pakistan","institution_ids":["https://openalex.org/I899713450"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5061368085","display_name":"Ammar Masood","orcid":"https://orcid.org/0000-0002-5118-0617"},"institutions":[{"id":"https://openalex.org/I899713450","display_name":"Air University","ror":"https://ror.org/03yfe9v83","country_code":"PK","type":"education","lineage":["https://openalex.org/I899713450"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Ammar Masood","raw_affiliation_strings":["National Center for Cyber Security, Air University, Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National Center for Cyber Security, Air University, Islamabad, Pakistan","institution_ids":["https://openalex.org/I899713450"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5017083303"],"corresponding_institution_ids":["https://openalex.org/I899713450"],"apc_list":null,"apc_paid":null,"fwci":0.9966,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.77266102,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":98},"biblio":{"volume":"31","issue":"1","first_page":"88","last_page":"107"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.6686655879020691},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6328808069229126},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5690730810165405},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5174384713172913},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.4863756000995636},{"id":"https://openalex.org/keywords/enterprise-information-security-architecture","display_name":"Enterprise information security architecture","score":0.48033514618873596},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.4550500810146332},{"id":"https://openalex.org/keywords/open-source","display_name":"Open source","score":0.44654327630996704},{"id":"https://openalex.org/keywords/enterprise-private-network","display_name":"Enterprise private network","score":0.43008914589881897},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.4193149209022522},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.3402554392814636},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.2730472683906555},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.11040151119232178},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.0795665979385376}],"concepts":[{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.6686655879020691},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6328808069229126},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5690730810165405},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5174384713172913},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.4863756000995636},{"id":"https://openalex.org/C31139447","wikidata":"https://www.wikidata.org/wiki/Q5380386","display_name":"Enterprise information security architecture","level":2,"score":0.48033514618873596},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.4550500810146332},{"id":"https://openalex.org/C3018397939","wikidata":"https://www.wikidata.org/wiki/Q3644502","display_name":"Open source","level":3,"score":0.44654327630996704},{"id":"https://openalex.org/C149859251","wikidata":"https://www.wikidata.org/wiki/Q483426","display_name":"Enterprise private network","level":2,"score":0.43008914589881897},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.4193149209022522},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.3402554392814636},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.2730472683906555},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.11040151119232178},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0795665979385376},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1108/ics-09-2021-0146","is_oa":false,"landing_page_url":"https://doi.org/10.1108/ics-09-2021-0146","pdf_url":null,"source":{"id":"https://openalex.org/S4210195545","display_name":"Information and Computer Security","issn_l":"2056-4961","issn":["2056-4961","2056-497X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information &amp; Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.6200000047683716}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":8,"referenced_works":["https://openalex.org/W1977360481","https://openalex.org/W2523880444","https://openalex.org/W2552266173","https://openalex.org/W2765782188","https://openalex.org/W2800111293","https://openalex.org/W2901285969","https://openalex.org/W2966732263","https://openalex.org/W2995934469"],"related_works":["https://openalex.org/W2347382544","https://openalex.org/W2391845923","https://openalex.org/W3179391984","https://openalex.org/W2908292657","https://openalex.org/W4282983627","https://openalex.org/W123276507","https://openalex.org/W2547738307","https://openalex.org/W2156505701","https://openalex.org/W2362173238","https://openalex.org/W2348339443"],"abstract_inverted_index":{"Purpose":[0],"The":[1],"security":[2,23,38,44,79,100,125,150,216,255,295],"of":[3,13,81,96,109,123,127,135,138,164,167,182,207,221,243,257,275,287,293,297,318],"applications,":[4],"systems":[5,50],"and":[6,19,31,46,112,157],"networks":[7],"has":[8],"always":[9],"been":[10],"the":[11,40,64,73,82,107,124,136,145,149,165,176,205,254,273,291,294,298,304,316],"source":[12,115,170,184,232,250,306],"great":[14],"concern":[15],"for":[16,187,204,239,272,280,313],"both":[17],"enterprises":[18,129],"common":[20],"users.":[21],"Different":[22],"tools":[24,53],"like":[25],"intrusion":[26],"detection":[27],"system/intrusion":[28],"prevention":[29],"system":[30,89,210],"firewalls":[32],"are":[33],"available":[34,248],"that":[35,71,118,197],"provide":[36,178,193,310],"preventive":[37],"to":[39,56,75,192,201,213,225,309],"enterprise":[41,98],"networks.":[42],"However,":[43,102],"information":[45],"event":[47],"management":[48],"(SIEM)":[49],"use":[51],"these":[52],"in":[54,266,315],"combination":[55],"collect":[57],"events":[58,74],"from":[59,103,247],"diverse":[60],"data":[61],"sources":[62],"across":[63],"network.":[65],"SIEM":[66,88,116,171,185,209,233,245,278,307],"is":[67,131,261,282,290],"a":[68,77,110,160,194,208,244,262,269],"proactive":[69],"tool":[70],"processes":[72],"present":[76],"unified":[78],"view":[80],"whole":[83],"network":[84,99,227,260],"at":[85],"one":[86],"location.":[87],"has,":[90],"therefore,":[91,229],"become":[92],"an":[93,97,240,258,276,319],"essential":[94],"component":[95],"architecture.":[101],"various":[104],"options":[105,308],"available,":[106],"selection":[108,206,274,317],"suitable":[111,238],"cost-effective":[113],"open":[114,169,183,231,249,305],"solution":[117,234,246,279],"can":[119,198],"effectively":[120],"meet":[121],"most":[122],"requirements":[126,179,220,256,296],"small-to-medium-sized":[128],"(SMEs)":[130],"not":[132,236],"simple":[133],"because":[134],"lack":[137],"strong":[139],"analysis.":[140],"Design/methodology/approach":[141],"In":[142],"this":[143,267,288],"work,":[144,268],"authors":[146,177],"first":[147],"review":[148],"challenges":[151],"faced":[152],"by":[153,202],"different":[154],"SME":[155,259,299],"sectors":[156,300],"then":[158],"consider":[159],"comprehensive":[161],"comparative":[162],"analysis":[163],"capabilities":[166],"well-known":[168],"solutions.":[172],"Based":[173],"on":[174],"this,":[175],"based":[180,252],"recommendations":[181],"solutions":[186,251],"SMEs.":[188],"This":[189],"paper":[190],"aims":[191],"valuable":[195],"resource":[196],"be":[199,237],"referred":[200],"SMEs":[203,222,281,314],"best":[211],"suited":[212],"their":[214,226],"organization\u2019s":[215],"posture.":[217],"Findings":[218],"Security":[219],"vary":[223],"according":[224],"infrastructure;":[228],"every":[230],"would":[235],"SME.":[241],"Selection":[242],"upon":[253],"critical":[263],"task.":[264],"Therefore,":[265],"meaningful":[270,311],"insight":[271,312],"appropriate":[277,320],"provided.":[283],"Originality/value":[284],"Major":[285],"contribution":[286],"work":[289],"mapping":[292],"under":[301],"consideration,":[302],"against":[303],"solution.":[321]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":4}],"updated_date":"2026-03-04T09:10:02.777135","created_date":"2025-10-10T00:00:00"}