Abstract :
Managing complex enterprise networks requires an understanding at a fine granularity than traditional network monitoring. The ability to correlate and visualize the dynamics and inter-relationships among various network components such as hosts, users, and applications is non-trivial. Network security visualization is a highlighted topic of network security research in recent years, The existing research situation of network security visualization is analyzed. the paper first proposed the network security situation awareness model, and analysis network security situation awareness method, at last, and designed and implemented the security situation visualization prototype system based on geographic information systems, network topology graph, attack paths. The security situation data show in multiple views, multi-angle, multi-level display to the user by visualization technology, therefore the performance of the security situation will be more accurate and vivid, assessment of network security situation become timely and accurate, laying the foundation for rapid decision-making.
Keywords :
business data processing; complex networks; computer network security; data visualisation; geographic information systems; network topology; attack paths; complex enterprise networks; decision-making; geographic information systems; network security situation awareness method; network security situation awareness model; network security visualization; network topology graph; security situation visualization prototype system; visualization technology; Data visualization; IP networks; Monitoring; Network topology; Security; Servers; Visualization; Quantification; Security situation; Situation awareness; Visualization;
