NVisionIP: an interactive network flow visualization tool for security

Author

Lakkaraju, Kiran ; Yurcik, William ; Bearavolu, Ratna ; Lee, Adam J.

Author_Institution

NCSA, Illinois Univ., Urbana, IL, USA

Volume

3

fYear

2004

fDate

10-13 Oct. 2004

Firstpage

2675

Abstract

Security engineers are being overwhelmed with data from the network monitoring tools. A tool is needed that would allow security engineers to view information about the entire network. In addition, the tool must allow the security engineers to use their background knowledge and intuition. NVisionIP, a tool developed at the National Center for Supercomputing Applications at the University of Illinois, Urbana-Champaign, provides a visualization of a class B network. Following the visual information seeking mantra ("overview first, zoom and alter then details-on-demand"), NVisionIP provides a visualization of an entire class B network, then allows users to drill down and gather more details about the hosts on the network. Combining the visualization and data processing capabilities of computers and the intuition and reasoning capabilities of humans, NVisionIP is a tool that allows security engineers to detect and stop attacks on networks.

Keywords

computer network reliability; security of data; NVisionIP; class B network; interactive network flow visualization tool; network monitoring tool; security engineer; visual information seeking mantra; Computer networks; Data engineering; Data processing; Data security; Data visualization; Humans; Information security; Knowledge engineering; Monitoring; National security;

fLanguage

English

Publisher

ieee

Conference_Titel

Systems, Man and Cybernetics, 2004 IEEE International Conference on

ISSN

1062-922X

Print_ISBN

0-7803-8566-7

Type

conf

DOI

10.1109/ICSMC.2004.1400735

Filename

1400735