swMATH ID: 7393
Software Authors: Kiran Lakkaraju; William Yurcik; Adam J. Lee
Description: NVisionIP: netflow visualizations of system state for security situational awareness. The number of attacks against large computer systems is currently growing at a rapid pace. Despite the best efforts of security analysts, large organizations are having trouble keeping on top of the current state of their networks. In this paper, we describe a tool called NVisionIP that is designed to increase the security analyst’s situational awareness. As humans are inherently visual beings, NVisionIP uses a graphical representation of a class-B network to allow analysts to quickly visualize the current state of their network. We present an overview of NVisionIP along with a discussion of various types of security-related scenarios that it can be used to detect.
Homepage: http://dl.acm.org/citation.cfm?id=1029219
Related Software: Nfdump; VisFlowConnect; Cytoscape.js; GitHub; BLINC; SaM; Dynagraph; arulesViz; PCAV; Graphviz
Cited in: 1 Publication

Citations by Year