A Rule Based Event Correlation Approach for Physical and Logical Security Convergence
Cyber threats have rapidly evolved in frequency and sophistication. As a result, physical and logical security systems are an essential solution to protect enterprise assets. Most enterprises deployed different types of physical and logical security systems but manage them as independent domain. Most physical security systems focus on the protection of the physical behavior of the unauthenticated personnel. Logical security systems protect information assets. Physical and logical security systems generate a large volume of alerts. Some of them report false positives and retrieve different alerts for a single attack. Those problems may cause the delay in response and miss detection.