Intelligent classification and visualization of network scans

C. Muelder, L. Chen, R. Thomason, Kwan-Liu Ma, T. Bartoletti

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Scopus citations

Abstract

Network scans are a common first step in a network intrusion attempt. In order to gain information about a potential network intrusion, it is beneficial to analyze these network scans. Statistical methods such as wavelet scalogram analysis have been used along with visualization techniques in previous methods. However, applying these statistical methods causes a substantial amount of data loss. This paper presents a study of using associative memory learning techniques to directly compare network scans in order to create a classification which can be used by itself or in conjunction with existing visualization techniques to better characterize the sources of these scans. This produces an integrated system of visual and intelligent analysis which is applicable to real world data.

Original languageEnglish (US)
Title of host publicationVizSEC 2007 - Proceedings of the Workshop on Visualization for Computer Security
Pages237-253
Number of pages17
StatePublished - Dec 1 2008
Event4th International Workshop on Computer Security, VizSec 2007 - Sacramento, CA, United States
Duration: Oct 29 2007Oct 29 2007

Other

Other4th International Workshop on Computer Security, VizSec 2007
CountryUnited States
CitySacramento, CA
Period10/29/0710/29/07

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'Intelligent classification and visualization of network scans'. Together they form a unique fingerprint.

  • Cite this

    Muelder, C., Chen, L., Thomason, R., Ma, K-L., & Bartoletti, T. (2008). Intelligent classification and visualization of network scans. In VizSEC 2007 - Proceedings of the Workshop on Visualization for Computer Security (pp. 237-253)