M-Sieve: a visualisation tool for supporting network security analysts

Choudhury, Sharmin (Tinni) and Kodagoda, Neesha and Nguyen, Phong H. and Rooney, Chris and Attfield, Simon and Xu, Kai and Zheng, Yongjun and Wong, B. L. William and Chen, Raymond and Mapp, Glenford E. and Slabbert, Louis and Aiash, Mahdi and Lasebae, Aboubaker (2012) M-Sieve: a visualisation tool for supporting network security analysts. In: VisWeek 2012, 14-19 Oct 2012, Seattle, WA, USA.

[img]
Preview
PDF (Paper For VisWeek 2012 Proceedings) - Published version (with publisher's formatting)
Available under License Creative Commons Attribution-NoDerivatives.

Download (313kB) | Preview
[img]
Preview
PDF (Poster for VAST Challenge Poster Session)
Available under License Creative Commons Attribution-NoDerivatives.

Download (821kB) | Preview

Abstract

The Middlesex Spatial Interactive Visualisation Environment (M-Sieve) is a spatiotemporal visual analytics tool for exploring computer network activity. M-Sieve allows the user to filter and visualize data through facets to explore and find patterns. To help guide exploration, we developed a set of rules which are used to derive a variable we call the ‘Concern Level Assessment’ (CLA). The CLA is based on attributes of nodes on the network. The rules were developed by eliciting inferences from network security domain experts. The combination of M-Sieve and the CLA allowed us to address the problem presented by the VAST 2012 Competition - Mini Challenge 1.

Item Type: Conference or Workshop Item (Paper)
Research Areas: A. > School of Science and Technology
A. > School of Science and Technology > Computer Science
A. > School of Science and Technology > Computer Science > SensoLab group
A. > School of Science and Technology > Computer and Communications Engineering
Item ID: 9394
Useful Links:
Depositing User: Dr Sharmin Choudhury
Date Deposited: 25 Oct 2012 12:49
Last Modified: 13 Oct 2016 14:24
URI: http://eprints.mdx.ac.uk/id/eprint/9394

Actions (login required)

Edit Item Edit Item

Full text downloads (NB count will be zero if no full text documents are attached to the record)

Downloads per month over the past year