Name
Abstract | ||
|---|---|---|
This paper presents a new approach to intrusion detection that supports the identification and analysis of network anomalies using an interactive coordinated multiple views (CMV) mechanism. A CMV visualization consisting of a node-link diagram, scatterplot, and time histogram is described that allows interactive analysis from different perspectives, as some network anomalies can only be identified through joint features in the provided spaces. Spectral analysis methods are integrated to provide visual cues that allow identification of malicious nodes. An adjacency-based method is developed to generate the time histogram, which allows users to select time ranges in which suspicious activity occurs. Data from Sybil attacks in simulated wireless networks is used as the test bed for the system. The results and discussions demonstrate that intrusion detection can be achieved with a few iterations of CMV exploration. Quantitative results are collected on the accuracy of our approach and comparisons are made to single domain exploration and other high-dimensional projection methods. We believe that this approach can be extended to anomaly detection in general networks, particularly to Internet networks and social networks. |
Year | DOI | Venue |
|---|---|---|
2010 | 10.1145/1850795.1850806 | VizSEC |
Keywords | Field | DocType |
multiple view,intrusion detection,security visualization,sybil attacks,network anomaly,spectral analysis method,cmv visualization,coordinated multiple views,spectral analysis,general network,time histogram,time range,cmv exploration,internet network,new approach,interactive analysis,interactive detection,anomaly detection,test bed,single domain,social network,wireless network,visual cues,projection method | Sensory cue,Adjacency list,Data mining,Wireless network,Anomaly detection,Histogram,Computer security,Computer science,Visualization,Intrusion detection system,The Internet | Conference |
Citations | PageRank | References |
6 | 0.48 | 22 |
Authors | ||
6 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Lane Harrison | 1 | 243 | 20.22 |
| Xianlin Hu | 2 | 19 | 2.06 |
| Xiaowei Ying | 3 | 316 | 16.64 |
| Aidong Lu | 4 | 353 | 30.18 |
| Weichao Wang | 5 | 500 | 33.87 |
| Xintao Wu | 6 | 892 | 76.91 |