Title :
Closing-the-loop in NVisionIP: integrating discovery and search in security visualizations
Author :
Lakkaraju, Kiran ; Bearavolu, Ratna ; Slagell, Adam ; Yurcik, William ; North, Stephen
Abstract :
The field of security visualization is in need of a paradigm shift in order to allow visualization tools to be practically used by security engineers. Security engineers must complete two different tasks, that of discovery of a pattern, and that of searching for a pattern in a data set. Current security visualizations do not aid the user in creating symbolic rules that represent visual patterns. Transforming visual patterns to symbolic rules requires effort by the security engineer and detracts from their main task of discovering interesting patterns. In this paper we describe the idea of closing-the-loop, a system where symbolic rules are created from visual patterns.
Keywords :
data mining; data visualisation; security of data; telecommunication security; NVisionIP; closing-the-loop method; intrusion detection systems; network security; pattern discovery; security visualization; symbolic rules; Computer displays; Computer interfaces; Computer networks; Data engineering; Data security; Data visualization; Information retrieval; Information security; Management information systems; Protection;
Conference_Titel :
Visualization for Computer Security, 2005. (VizSEC 05). IEEE Workshop on
Print_ISBN :
0-7803-9477-1
DOI :
10.1109/VIZSEC.2005.1532068
