IDSPlanet: A Novel Radial Visualization of Intrusion Detection Alerts
| Title | IDSPlanet: A Novel Radial Visualization of Intrusion Detection Alerts |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Shi, Yang, Zhang, Yaoxue, Zhou, Fangfang, Zhao, Ying, Wang, Guojun, Shi, Ronghua, Liang, Xing |
| Conference Name | Proceedings of the 9th International Symposium on Visual Information Communication and Interaction |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4149-3 |
| Keywords | composability, cyber security, IDS, pubcrawl, visualization |
| Abstract | In this article, we present a novel radial visualization of IDS alerts, named IDSPlanet, which helps administrators identify false positives, analyze attack patterns, and understand evolving network conditions. Inspired by celestial bodies, IDSPlanet is composed of Chrono Rings, Alert Continents, and Interactive Core. These components correspond with temporal features of alert types, patterns of behavior in affected hosts, and correlations amongst alert types, attackers and targets. The visualization provides an informative picture for the status of the network. In addition, IDSPlanet offers different interactions and monitoring modes, which allow users to interact with high-interest individuals in detail as well as to explore overall pattern. |
| URL | http://doi.acm.org/10.1145/2968220.2968221 |
| DOI | 10.1145/2968220.2968221 |
| Citation Key | shi_idsplanet:_2016 |