‘Visual Discovery in Computer Network Defense’ in Sept/Oct issue of IEEE Computer Graphics and Applications
Anita D. D’Amico, John R. Goodall, Daniel R. Tesone, and Jason K. Kopylec have just published an article entitled ‘Visual Discovery in Computer Network Defense‘ in a special issue of IEEE Computer Graphics and Applications on the topic of ‘Discovering the Unexpected’.
D’Amico, A. D., Goodall, J. R., Tesone, D. R., & Kopylec, J. K. (2007). Visual discovery in computer network defense. IEEE Computer Graphics and Applications, 27(5), 20-27.
Abstract: Computer network defense (CND) requires analysts to detect both known and novel forms of attacks in massive volumes of network data. Visualization tools can potentially assist in the discovery of suspicious patterns of network activity and relationships between seemingly disparate security events, but few CND analysts are leveraging visualization technologies in their current practice. To address this, we created a new visualization framework, VIAssist, based on a comprehensive cognitive task analysis of CND analysts. We designed VIAssist to fit the work practices and operational environments of those analysts. This article describes the major visual analytic features of VIAssist that address the needs of CND analysts, including its coordinated visualizations and interactive report building capabilities. A scenario illustrates how it can be used to discover the unexpected in network flow data.