Integrated visualization system for monitoring security in large-scale local area network

Author

Mukosaka, Shinichi ; Koike, Hideki

Author_Institution

Graduate Sch. of Inf. Syst., Univ. of Electro-Commun.

fYear

2007

fDate

5-7 Feb. 2007

Firstpage

41

Lastpage

44

Abstract

In monitoring security of enterprise or campus networks, detecting attacks from internal network to external network is becoming more and more important. After detecting such attacks, finding the location of the target PC is sometimes needed. This paper describes a visual security monitoring system for large-scale local area network. The system integrates three information, logical, temporal, and geographical information, in one 3D visualization. The system also provides effective interaction capabilities and filtering mechanism. IDS logs obtained at the computer center of our university were visualized, and typical examples such as botnet activities and SSH brute force attack were discussed.

Keywords

computerised monitoring; data visualisation; local area networks; security of data; telecommunication security; 3D visualization; IP address; filtering mechanism; geographical information; integrated visualization system; interaction capabilities; large-scale local area network; logical information; temporal information; visual security monitoring system; Computer interfaces; Computer networks; Computerized monitoring; Information security; Information systems; Intrusion detection; Large scale integration; Local area networks; Personal communication networks; Visualization;

fLanguage

English

Publisher

ieee

Conference_Titel

Visualization, 2007. APVIS '07. 2007 6th International Asia-Pacific Symposium on

Conference_Location

Sydney, NSW

Print_ISBN

1-4244-0808-3

Electronic_ISBN

1-4244-0809-1

Type

conf

DOI

10.1109/APVIS.2007.329273

Filename

4126216