Posted on November 28th, 2008 by Tim Bass
Detection experts understand that the optimal detection design and architecture is generally a combination of both signature and anomaly detection engines. In event processing, signature detection involves the real-time pattern matching analysis of events. A core advantage of signature detection is that basic pattern matching models are easy to understand and develop [...]
Filed under: Advanced Event Processing, Analytics, Artificial Intelligence, Business Optimization, CEP Terminology, Complex Event Processing, Cybersecurity, Detection Theory, Event Processing, Event Processing Modelling, False Positives and Negatives, Modelling and Simulation, Performance, Process Optimization, Situation Models, Systems Engineering, Threats and Vulnerabilities | No Comments »
Posted on November 3rd, 2008 by Tim Bass
For archiving purposes, I have uploaded 24 public CEP presentations that I presented over an 18 month period at various conferences from March 14, 2006 to September 21, 2007. These presentations can be viewed here. For example, my first public CEP presentation:
View SlideShare presentation or Upload your own. (tags: event processing)
So far, I have placed [...]
Filed under: Adapters, Advanced Event Processing, Agents, Analytics, Artificial Intelligence, Asia Pacific, Blackboard Architecture, Business Activity Monitoring, Business Event Processing, Business Events, Business Optimization, Business Process Management, Business Rules, CEP News and Events, CEP Terminology, CEP Tutorials, Cloud Computing, Complex Event, Complex Event Processing, Consulting, Cybersecurity, Detection Theory, Development and Evaluation, EAI ESB & SOA, EDA, EPRAWG, EPTS, Education and Training, Event Cloud, Event Processing, Event Processing Language, Event Processing Technical Society, Event Stream Processing, Event-Driven Architecture, False Positives and Negatives, Financial Services, Fraud Detection, Intrusion Detection, Message-Oriented Middleware, Modelling and Simulation, POSETS, Predictive Business, Process Optimization, Reference Architecture, Risk Management, Scheduling, Security Event Management, Sensor Fusion, Simple Event Processing, Situation Models, Standards, Systems Engineering, TIBCO, Threats and Vulnerabilities, Use Cases | 2 Comments »
Posted on November 1st, 2008 by Tim Bass
Posted on October 30th, 2008 by Tim Bass
Posted on October 28th, 2008 by Tim Bass
Hello from Taipei.
We just completed an absolutely awesome OWASP conference (over 1200 attendees), OWASP AppSec Asia 2008 - Taiwan. This was a very well managed conference, organized by Wayne Huang, OWASP Taiwan Chapter Leader and Founder and CEO of Armorize. In a future post, when I get links to other speaker’s presentations, I will talk [...]
Filed under: Complex Event Processing, Cybersecurity, OWASP, Systems Engineering, Threats and Vulnerabilities | 1 Comment »
Posted on October 14th, 2008 by Tim Bass
Here is the latest on OWASP AppSec Asia 2008 - Taiwan. I will be giving a talk on Oct 27th about Proxy Caches and Web Application Security–using the recent Google Docs 0-day as an example.
Some of the background for this presentation are Proxy Caches are a Challenging Threat to Internet Security and A New Security [...]
Filed under: Asia Pacific, Complex Event Processing, Cybersecurity, OWASP, Threats and Vulnerabilities | No Comments »
Posted on October 5th, 2008 by Tim Bass
Proxy caches, combined with poorly written session management code, can easily leads to serious security flaws similar to what we highlighted in A New Security Breach in Google Docs Revealed.
Web developers have no control over proxy caches in the Internet. However, developers do have control of the code they write and their admin teams have [...]
Filed under: Complex Event Processing, Cybersecurity, Threats and Vulnerabilities, Use Cases | No Comments »
Posted on October 2nd, 2008 by Tim Bass
In The Genesis of Complex Event Processing: Asymmetric Capabilities I introduced the abstract concept of “asymmetric processing capabilities” to describe the foundations of complex event processing. If you take a few moments to review the first CEP projects from Stanford University, you will see that the application of CEP was toward solving myriad asymmetric event [...]
Filed under: Advanced Event Processing, Analytics, CEP News and Events, CEP Terminology, CEP Tutorials, Complex Event, Complex Event Processing, Cybersecurity, Detection Theory, Event Cloud, Event Processing, Event Processing Modelling, Security Event Management, Sensor Fusion, Simple Event Processing, Systems Engineering, Threats and Vulnerabilities, Use Cases | No Comments »
Posted on September 29th, 2008 by Tim Bass
Last year, in collaboration with IT security experts from (ISC)2 and the LinkedIn professional network, I published The Top Ten Cybersecurity Threats for 2008. In a joint meeting with interested AMCHAM Thailand guests from the Open Web Application Security Project (OWASP), Thailand, Chapter, we will review the 2008 top 10 cybersecurity threats and facilitate an [...]
Filed under: CEP News and Events, Complex Event Processing, Cybersecurity, Thailand, Threats and Vulnerabilities | No Comments »
Posted on September 20th, 2008 by Tim Bass
I read an interesting post by the former CTO of out-of-business Kaskad Technology, where event processing colleague Colin Clark respectfully disagrees with my assessment of the (lack of) capabilites in current-generation “CEP engines” for detecting complex fraud in financial services. I’ll respond with a quote from my September 2007 post, End Users Should Define the CEP Market.
“Experienced end [...]
Filed under: Complex Event, Complex Event Processing, Event Processing, Event Stream Processing, Financial Services, Fraud Detection, Threats and Vulnerabilities, Use Cases | 2 Comments »
