An Efficient Network Attack Visualization Using Security Quad and Cube

Security Quad and Cube (SQC) is a network attack analyzer that is capable of aggregating many different events into a single significant incident and visualizing these events in order to identify suspicious or illegitimate behavior. A network administrator recognizes network anomalies by analyzing the traffic data and alert messages generated in the security devices; however, it takes a lot of time to inspect and analyze them because the security devices generate an overwhelming amount of logs and security events. In this paper, the authors propose SQC, an efficient method for analyzing network security through visualization.

Provided by: ETRI Journal Topic: Security Date Added: Oct 2011 Format: PDF

Find By Topic