Title :
Integrated visualization system for monitoring security in large-scale local area network
Author :
Mukosaka, Shinichi ; Koike, Hideki
Author_Institution :
Graduate Sch. of Inf. Syst., Univ. of Electro-Commun.
Abstract :
In monitoring security of enterprise or campus networks, detecting attacks from internal network to external network is becoming more and more important. After detecting such attacks, finding the location of the target PC is sometimes needed. This paper describes a visual security monitoring system for large-scale local area network. The system integrates three information, logical, temporal, and geographical information, in one 3D visualization. The system also provides effective interaction capabilities and filtering mechanism. IDS logs obtained at the computer center of our university were visualized, and typical examples such as botnet activities and SSH brute force attack were discussed.
Keywords :
computerised monitoring; data visualisation; local area networks; security of data; telecommunication security; 3D visualization; IP address; filtering mechanism; geographical information; integrated visualization system; interaction capabilities; large-scale local area network; logical information; temporal information; visual security monitoring system; Computer interfaces; Computer networks; Computerized monitoring; Information security; Information systems; Intrusion detection; Large scale integration; Local area networks; Personal communication networks; Visualization;
Conference_Titel :
Visualization, 2007. APVIS '07. 2007 6th International Asia-Pacific Symposium on
Conference_Location :
Sydney, NSW
Print_ISBN :
1-4244-0808-3
Electronic_ISBN :
1-4244-0809-1
DOI :
10.1109/APVIS.2007.329273
