Geovisual analytics for cyber security: Adopting the GeoViz Toolkit

Nicklaus A. Giacobe, Sen Xu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

11 Scopus citations

Abstract

For the VAST 2011 Network Security Mini-Challenge, we adopted geovisual analytic methods and applied them in the field of network security. We used the GeoViz Toolkit [1] to represent cyber security events, by fabricating a simple "geography" of several sets of blocks (one for the workstations, one for the servers, and one for the Internet) using ArcGIS 10 (by ESRI - Environmental System Research Institute). Security data was tabulated using Perl scripts to parse the logs in order to create representations of event frequency and where they occurred on the network. The tabulated security data was then added as attributes of the geography. Exploration of the data and subsequent analysis of the meaning and impact of the cyber security events was made possible using the GeoViz Toolkit.

Original languageEnglish (US)
Title of host publicationVAST 2011 - IEEE Conference on Visual Analytics Science and Technology 2011, Proceedings
Pages315-316
Number of pages2
DOIs
StatePublished - Dec 1 2011
Event2nd IEEE Conference on Visual Analytics Science and Technology 2011, VAST 2011 - Providence, RI, United States
Duration: Oct 23 2011Oct 28 2011

Publication series

NameVAST 2011 - IEEE Conference on Visual Analytics Science and Technology 2011, Proceedings

Other

Other2nd IEEE Conference on Visual Analytics Science and Technology 2011, VAST 2011
Country/TerritoryUnited States
CityProvidence, RI
Period10/23/1110/28/11

All Science Journal Classification (ASJC) codes

  • Computer Vision and Pattern Recognition

Fingerprint

Dive into the research topics of 'Geovisual analytics for cyber security: Adopting the GeoViz Toolkit'. Together they form a unique fingerprint.

Cite this