Case Study: Visualization and Information Retrieval Techniques for Network Intrusion Detection
View/ Open
Date
2001Author
Atkison, Travis
Pensy, Kathleen
Nicholas, Charles
Ebert, David
Atkison, Rebekah
Morris, Chris
Metadata
Show full item recordAbstract
We describe our efforts to analyze network intrusion detection data using information retrieval and visualization tools. By regarding Telnet sessions as documents, which may or may not include attacks, a session that contains a certain type of attack can be used as a query, allowing us to search the data for other instances of that same type of attack. The use of information visualization techniques allows us to quickly and clearly find the attacks and also find similar, potentially new types of attacks.
BibTeX
@inproceedings {10.2312:VisSym:VisSym01:283-290,
booktitle = {Eurographics / IEEE VGTC Symposium on Visualization},
editor = {David S. Ebert and Jean M. Favre and Ronald Peikert},
title = {{Case Study: Visualization and Information Retrieval Techniques for Network Intrusion Detection}},
author = {Atkison, Travis and Pensy, Kathleen and Nicholas, Charles and Ebert, David and Atkison, Rebekah and Morris, Chris},
year = {2001},
publisher = {The Eurographics Association},
ISSN = {1727-5296},
ISBN = {3-211-83674-8},
DOI = {10.2312/VisSym/VisSym01/283-290}
}
booktitle = {Eurographics / IEEE VGTC Symposium on Visualization},
editor = {David S. Ebert and Jean M. Favre and Ronald Peikert},
title = {{Case Study: Visualization and Information Retrieval Techniques for Network Intrusion Detection}},
author = {Atkison, Travis and Pensy, Kathleen and Nicholas, Charles and Ebert, David and Atkison, Rebekah and Morris, Chris},
year = {2001},
publisher = {The Eurographics Association},
ISSN = {1727-5296},
ISBN = {3-211-83674-8},
DOI = {10.2312/VisSym/VisSym01/283-290}
}