Visualizing traffic causality for analyzing network anomalies
Monitoring network traffic and detecting anomalies are essential tasks that are carried out
routinely by security analysts. The sheer volume of network requests often makes it difficult …
routinely by security analysts. The sheer volume of network requests often makes it difficult …
Oceans: Online collaborative explorative analysis on network security
Visualization and interactive analysis can help network administrators and security analysts
analyze the network flow and log data. The complexity of such an analysis requires a …
analyze the network flow and log data. The complexity of such an analysis requires a …
[HTML][HTML] Insight2: A modular visual analysis platform for network situational awareness in large-scale networks
HADE Kodituwakku, A Keller, J Gregor - Electronics, 2020 - mdpi.com
The complexity and throughput of computer networks are rapidly increasing as a result of the
proliferation of interconnected devices, data-driven applications, and remote working …
proliferation of interconnected devices, data-driven applications, and remote working …
TVi: A visual querying system for network monitoring and anomaly detection
A Boschetti, L Salgarelli, C Muelder… - Proceedings of the 8th …, 2011 - dl.acm.org
Monitoring, anomaly detection and forensics are essential tasks that must be carried out
routinely for every computer network. The sheer volume of data generated by conventional …
routinely for every computer network. The sheer volume of data generated by conventional …
Situ: Identifying and explaining suspicious behavior in networks
Despite the best efforts of cyber security analysts, networked computing assets are routinely
compromised, resulting in the loss of intellectual property, the disclosure of state secrets …
compromised, resulting in the loss of intellectual property, the disclosure of state secrets …
VAFLE: Visual analytics of firewall log events
M Ghoniem, G Shurkhovetskyy… - … and Data Analysis …, 2014 - spiedigitallibrary.org
In this work, we present VAFLE, an interactive network security visualization prototype for the
analysis of firewall log events. Keeping it simple yet effective for analysts, we provide …
analysis of firewall log events. Keeping it simple yet effective for analysts, we provide …
[PDF][PDF] Nfsight: netflow-based network awareness tool
Network awareness is highly critical for network and security administrators. It enables
informed planning and management of network resources, as well as detection and a …
informed planning and management of network resources, as well as detection and a …
ASAP: Automatic semantics-aware analysis of network payloads
Automatic inspection of network payloads is a prerequisite for effective analysis of network
communication. Security research has largely focused on network analysis using protocol …
communication. Security research has largely focused on network analysis using protocol …
A survey of network anomaly visualization
Network anomaly analysis is an emerging subtopic of network security. Network anomaly
refers to the unusual behavior of network devices or suspicious network status. A number of …
refers to the unusual behavior of network devices or suspicious network status. A number of …
SNAPS: Semantic network traffic analysis through projection and selection
BCM Cappers, JJ van Wijk - 2015 IEEE Symposium on …, 2015 - ieeexplore.ieee.org
Most network traffic analysis applications are designed to discover malicious activity by only
relying on high-level flow-based message properties. However, to detect security breaches …
relying on high-level flow-based message properties. However, to detect security breaches …