Attack Analyzer: A Network Analysis and Visualization Tool

Abstract

The massive amounts of data that confront systems analysts as they monitor computer networks for security violations can be overwhelming. As a result, analysts may overlook critical details that may signal network break-ins or other system intrusions. This flood of data can consume systems analysts time and lead to missed security violations and in extreme cases could lead to the complete collapse of a computer network or networks creating dangers to those who depend on them. The author addresses this problem with the development of a prototype visualization tool that attempts to clarify when a computer networks security may be compromised. The tool itself, Attack Analyzer is described and the methodology and fieldwork testing used to create it are detailed. The tool uses a somewhat novel top-down, or deductive approach, moving from the general to the specific, rather than a bottom-up, or inductive method.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 01, 2007
Accession Number
ADA464353

Entities

People

  • Russell L. Kahn

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Analyzers
  • Computer Network Security
  • Computer Networks
  • Computer Programming
  • Field Tests
  • Government Procurement
  • Intrusion
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Models
  • Prototypes
  • Security
  • Situational Awareness
  • Visualizations

Fields of Study

  • Computer science

Readers

  • Computational Linguistics
  • Cybersecurity.
  • Educational Psychology

Technology Areas

  • Cyber