Managing Huge Set of Comple Event Processing Rules for Critical Infrastructure Protection

Rule based Complex Event Processing (CEP) principle is useful to fuse heterogeneous detections from heterogeneous sensors and to make deductions in order to build a high level of threat assessment. Besides this, the threat assessment for a critical infrastructure is based on a rigorous Risk Management Process that includes feedback loops at each step. As a consequence, this requires very dynamic management of the cep rule base, whose difficulty increases with the number of cep rules. This paper presents the use of ontology and the semantic web tools as a way to specify, to check and to manage a rule based Complex Event Processing system, in order to easily integrate it into the Risk Management Process of a critical infrastructure.