VizSEC 2007: Proceedings of the Workshop on Visualization for Computer SecurityJohn R. Goodall, Gregory Conti, Kwan-Liu Ma Networked computers are ubiquitous, and are subject to attack, misuse, and abuse. One method to counteracting this cyber threat is to provide security analysts with better tools to discover patterns, detect anomalies, identify correlations, and communicate their findings. Visualization for computer security (VizSec) researchers and developers are doing just that. VizSec is about putting robust information visualization tools into the hands of human analysts to take advantage of the power of the human perceptual and cognitive processes in solving computer security problems. This volume collects the papers presented at the 4th International Workshop on Computer Security - VizSec 2007. |
Contents
| 1 | |
Visual Analysis of Network Flow Data with Timelines and Event | 13 |
Visualizing Network Security Events Using Compound Glyphs | 14 |
The Real Work of Computer Network Defense Analysts | 19 |
Adapting Personas for Use in Security Visualization Design | 39 |
Measuring the Complexity of Computer Security Visualization | 53 |
Integrated Environment Management for Information | 67 |
Plots | 85 |
High Level Internet Scale Traffic Visualization Using Hilbert | 147 |
From Idea to Product | 159 |
Visually Understanding Jam Resistant Communication | 175 |
Visualization of Host Behavior for Network Security | 187 |
Visual Correlation of Network | 203 |
An Interactive Attack Graph Cascade and Reachability Display | 221 |
Intelligent Classification and Visualization of Network Scans | 237 |
Using InetVis to Evaluate Snort and Bro Scan Detection | 255 |
An EntityBased NetFlow Visualization Utility | 101 |
Abstracting | 115 |
From a ServiceOriented Perspective | 131 |
Future Work | 270 |
Other editions - View all
Common terms and phrases
administrator alerts algorithm allows analyze applications approach attack graph axis behavior Bytes CND analysts color complexity analysis complexity score Computer Security context correlation create cyber Data Mining data sources destination display evaluation event plot example experimenters extraneous cognitive load filter focus Graphics Grudin heuristic highlight Hilbert curve hosts ICMP identify information visualization interactive interface Internet intrusion detection IP addresses LARIAT mapping monitoring multiple NetFlow network flows network security network traffic nodes organizations packet performed PlanetLab port Proceedings queries reports represents RUMINT scan detection security visualization separable dimensions server shows situation awareness subnet task techniques testbed threat analysis timeline tion treemap triage types usability user studies visual attributes visual frames visual integration visual patterns visual units visualization design Visualization for Computer visualization tool VizSec workflow Workshop on Visualization
Popular passages
Page vi - Department of Electrical Engineering and Computer Science, United States Military Academy, West Point, NY 10997 F.