Title :
Network traffic analysis and security monitoring with UniMon
Author :
Erhard, Werner ; Gutzmann, Michael M. ; Libati, Hastings M.
Author_Institution :
Dept. of Comput. Sci., Friedrich-Schiller-Univ., Jena, Germany
Abstract :
This paper introduces an adaptable, flexible and portable network traffic monitor. UniMon (Universal Network Traffic Monitor) is an external and passive network traffic monitor that has been designed in such a way that it can easily be adapted to any type of network and protocols. As a software monitor, UniMon may run on arbitrary workstations within an Ethernet. UniMon aims at offering total network visibility for all the seven ISO/OSI layers and so give a complete analysis of each network packet it captures. UniMon is a suitable tool for network security monitoring and also for network performance monitoring and troubleshooting
Keywords :
computer network management; local area networks; protocols; telecommunication security; telecommunication traffic; Ethernet; ISO/OSI layers; UniMon; Universal Network Traffic Monitor; external and passive network traffic monitor; network traffic analysis; performance monitoring; security monitoring; software monitor; troubleshooting; Computer hacking; Computer languages; Computerized monitoring; Data security; Displays; ISO; Information security; Open systems; Protocols; Telecommunication traffic;
Conference_Titel :
High Performance Switching and Routing, 2000. ATM 2000. Proceedings of the IEEE Conference on
Conference_Location :
Heidelberg
Print_ISBN :
0-7803-5884-8
DOI :
10.1109/HPSR.2000.856694
