Event correlation

Event correlation is a technique for making sense of a large number of events and pinpointing the few events that are really important in that mass of information. This is accomplished by looking for and analyzing relationships between events. Event correlation has been used in various fields for many years: since the 1970s, telecommunications and industrial process control; since the 1980s, network management and systems management; since the 1990s, IT service management, publish-subscribe systems (pub/sub), Complex Event Processing (CEP) and Security Information and Event Management (SIEM); since the early 2000s, Distributed Event-Based Systems and Business Activity Monitoring (BAM). Integrated management is traditionally subdivided into various fields: layer by layer: network management, system management, service management, etc. by management function: performance management, security management, etc. Event correlation takes place in different components depending on the field of study: Within the field of network management, event correlation is performed in a management platform typically known as a Network Management Station or Network Management System (NMS). For example, events may notify that a device has just rebooted or that a network link is currently down. Within the field of systems management, an event may for instance report that the CPU utilization of an e-business server has been at 100% for over 15 minutes. Within the field of service management, an event may notify that a Service-Level Objective is not met for a given customer, for example. Within the field of security management, the management platform is usually known as the Security Information and Event Management (SIEM), and event correlation is often performed in a separate correlation engine. That engine may directly receive events in real time, or it may read them from SIEM storage. In this case, examples of monitored events include activity such as authentication, access to services and data, and output from point security tools such as an Intrusion Detection System (IDS) or antivirus software.

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Related publications (24)

Related people (26)

Related units (12)

Related concepts (1)

Related lectures (5)

Asynchrony Increases Efficiency: Time Encoding of Videos and Low-Rank Signals

Martin Vetterli, Adam James Scholefield, Karen Adam

In event-based sensing, many sensors independently and asynchronously emit events when there is a change in their input. Event-based sensing can present significant improvements in power efficiency when compared to traditional sampling, because (1) the out ...

IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC2022

Shooting shots: Estimating alcoholic drink sizes in real life using event-level reports and annotations of close-up pictures

Daniel Gatica-Perez, Thanh Trung Phan

Introduction and Aims Drinks consumed in real life are diverse, in terms of beverage type, container size and alcohol by volume. To date, most ecological momentary assessment studies have assessed drinking amounts with 'standard' drinks, although their eve ...

WILEY2020

Correlations of azimuthal anisotropy Fourier harmonics in pPb collisions at $\sqrt{s_\mathrm{NN}} =$ 8.16 TeV

Jian Wang, Matthias Finger, Lesya Shchutska, Qian Wang, Matthias Wolf, Varun Sharma, Konstantin Androsov, Jan Steggemann, Leonardo Cristella, Xin Chen, Davide Di Croce, Mingkui Wang, Zhirui Xu, João Miguel das Neves Duarte, Tagir Aushev, Tian Cheng, Yixing Chen, Werner Lustermann, Andromachi Tsirou, Alexis Kalogeropoulos, Andrea Rizzi, Ioannis Papadopoulos, Paolo Ronchese, Thomas Muller, Ho Ling Li, Giuseppe Codispoti, Hua Zhang, Siyuan Wang, Peter Hansen, Daniel Gonzalez, Tao Huang, David Vannerom, Michele Bianco, Kun Shi, Wei Shi, Abhisek Datta, Ji Hyun Kim, Donghyun Kim, Dipanwita Dutta, Zheng Wang, Sanjeev Kumar, Wei Li, Yong Yang, Geng Chen, Yi Wang, Ajay Kumar, Ashish Sharma, Georgios Anagnostou, Joao Varela, Csaba Hajdu, Muhammad Ahmad, Ekaterina Kuznetsova, Ioannis Evangelou, Matthias Weber, Muhammad Shoaib, Milos Dordevic, Vineet Kumar, Vladimir Petrov, Francesco Fiori, Quentin Python, Meng Xiao, Hao Liu, Sourav Sen, Yanlin Liu, Viktor Khristenko, Marco Trovato, Fan Xia, Xiao Wang, Bibhuprasad Mahakud, Jing Li, Rajat Gupta, Zhen Liu, Lei Feng, Muhammad Waqas, Hui Wang, Seungkyu Ha, Davide Cieri, Maren Tabea Meinhard, Giorgia Rauco, Ali Harb, Benjamin William Allen, Long Wang, Pratyush Das, Miao Hu, Lei Li

Event-by-event correlations of azimuthal anisotropy Fourier coefficients (

v_n

) in 8.16 TeV pPb collision data, collected by the CMS experiment at the LHC, are extracted using a subevent four-particle cumulant technique. The pseudorapidity range of the CM ...

2019

Complex event processing

Event processing is a method of tracking and analyzing (processing) streams of information (data) about things that happen (events), and deriving a conclusion from them. Complex event processing (CEP) consists of a set of concepts and techniques developed in the early 1990s for processing real-time events and extracting information from event streams as they arrive. The goal of complex event processing is to identify meaningful events (such as opportunities or threats) in real-time situations and respond to them as quickly as possible.

Akka Typed Persistence

Covers Akka Typed Persistence, focusing on how persistent actors note changes and apply them as state changes.

Persistent Actor State

Explores persisting actor state, event-sourcing, and trade-offs for fault tolerance.

Hybrid Structure of Interdisciplinary Projects

Explains the hybrid structure of interdisciplinary projects, including project management, finance, intellectual property, and event management.