Fischer, Fabian ; Davey, James ; Fuchs, Johannes ; Thonnard, Olivier ; Kohlhammer, Jörn ; Keim, Daniel A. (2014)
A Visual Analytics Field Experiment to Evaluate Alternative Visualizations for Cyber Security Applications.
EuroVA 2014.
doi: 10.2312/eurova.20141144
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
The analysis and exploration of emerging threats in the Internet is important to better understand the behaviour of attackers and develop new methods to enhance cyber security. Fully automated algorithms alone are often not capable of providing actionable insights about the threat landscape. We therefore combine a multi-criteria clustering algorithm, tailor-made for the identification of such attack campaigns with three interactive visualizations, namely treemap representations, interactive node-link diagrams, and chord diagrams, to allow the analysts to visually explore and make sense of the resulting multi-dimensional clusters. To demonstrate the potential of the system, we share our lessons learned in conducting a field experiment with experts in a security response team and show how it helped them to gain new insights into various threat landscapes.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2014 |
| Autor(en): | Fischer, Fabian ; Davey, James ; Fuchs, Johannes ; Thonnard, Olivier ; Kohlhammer, Jörn ; Keim, Daniel A. |
| Art des Eintrags: | Bibliographie |
| Titel: | A Visual Analytics Field Experiment to Evaluate Alternative Visualizations for Cyber Security Applications |
| Sprache: | Englisch |
| Publikationsjahr: | 2014 |
| Verlag: | Eurographics Association, Goslar |
| Veranstaltungstitel: | EuroVA 2014 |
| DOI: | 10.2312/eurova.20141144 |
| Kurzbeschreibung (Abstract): | The analysis and exploration of emerging threats in the Internet is important to better understand the behaviour of attackers and develop new methods to enhance cyber security. Fully automated algorithms alone are often not capable of providing actionable insights about the threat landscape. We therefore combine a multi-criteria clustering algorithm, tailor-made for the identification of such attack campaigns with three interactive visualizations, namely treemap representations, interactive node-link diagrams, and chord diagrams, to allow the analysts to visually explore and make sense of the resulting multi-dimensional clusters. To demonstrate the potential of the system, we share our lessons learned in conducting a field experiment with experts in a security response team and show how it helped them to gain new insights into various threat landscapes. |
| Freie Schlagworte: | Business Field: Visual decision support, Research Area: Human computer interaction (HCI), Network security, Clustering, Evaluation, Visual analytics, Information visualization |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Graphisch-Interaktive Systeme |
| Hinterlegungsdatum: | 12 Nov 2018 11:16 |
| Letzte Änderung: | 12 Nov 2018 11:16 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum