Sciweavers

VIZSEC
2005
Springer

A Visualization Methodology for Characterization of Network Scans

14 years 6 months ago
A Visualization Methodology for Characterization of Network Scans
Many methods have been developed for monitoring network traffic, both using visualization and statistics. Most of these methods focus on the detection of suspicious or malicious activities. But what they often fail to do refine and exercise measures that contribute to the characterization of such activities and their sources, once they are detected. In particular, many tools exist that detect network scans or visualize them at a high level, but not very many tools exist that are capable of categorizing and analyzing network scans. This paper presents a means of facilitating the process of characterization by using visualization and statistics techniques to analyze the patterns found in the timing of network scans through a method of continuous improvement in measures that serve to separate the components of interest in the characterization so the user can control separately for the effects of attack tool employed, performance characteristics of the attack platform, and the effects o...
Chris Muelder, Kwan-Liu Ma, Tony Bartoletti
Added 28 Jun 2010
Updated 28 Jun 2010
Type Conference
Year 2005
Where VIZSEC
Authors Chris Muelder, Kwan-Liu Ma, Tony Bartoletti
Comments (0)