Sciweavers

VIZSEC
2007
Springer

Visualization of Host Behavior for Network Security

14 years 5 months ago
Visualization of Host Behavior for Network Security
Monitoring host behavior in a network is one of the most essential tasks in the fields of network monitoring and security since more and more malicious code in the wild internet constantly threatens the network infrastructure. In this paper, we present a visual analytics tool that visualizes network host behavior through positional changes in a two dimensional space using a force-directed graph layout algorithm. The tool’s interaction capabilities allow for visual exploration of network traffic over time and are demonstrated using netflow data as well as IDS alerts. Automatic accentuation of hosts with highly variable traffic results in fast hypothesis generation and confirmation of suspicious host behavior. By triggering the behavior graph from p tool, we were able to monitor more abstract network entities.
F. Mansman, L. Meier, Daniel A. Keim
Added 09 Jun 2010
Updated 09 Jun 2010
Type Conference
Year 2007
Where VIZSEC
Authors F. Mansman, L. Meier, Daniel A. Keim
Comments (0)