Inhaltsangabe
Network packet traces, despite having a lot of noise, contain priceless information, especially for investigating security incidents and performance problems. However, given the gigabytes of ?ow crossing a typical enterprise network every day, spotting malicious activity and analyzing trends become tedious tasks. Therefore, the appropriate representation of traffic data to the human user is crucial to network security. In this book, we bring together two powerful tools from different areas of application: SiLK (System for Internet-Level Knowledge), for command-based network trace analysis; and ComVis, a generic information visualization tool. We integrate the powers of both tools by aiding simplified interaction between them, using a simple GUI, for the purpose of visualizing network traces, characterizing interesting patterns, and ?ngerprinting related activity. The main contribution of this research is a protocol-specific framework of visualization for ICMP and UDP traffic data. The Guidelines we infer can be vital in the creation of ?smart books? describing best practices in using visualization and interaction techniques to maintain network security.
Die Inhaltsangabe kann sich auf eine andere Ausgabe dieses Titels beziehen.
Reseña del editor
Network packet traces, despite having a lot of noise, contain priceless information, especially for investigating security incidents and performance problems. However, given the gigabytes of flow crossing a typical enterprise network every day, spotting malicious activity and analyzing trends become tedious tasks. Therefore, the appropriate representation of traffic data to the human user is crucial to network security. In this book, we bring together two powerful tools from different areas of application: SiLK (System for Internet-Level Knowledge), for command-based network trace analysis; and ComVis, a generic information visualization tool. We integrate the powers of both tools by aiding simplified interaction between them, using a simple GUI, for the purpose of visualizing network traces, characterizing interesting patterns, and fingerprinting related activity. The main contribution of this research is a protocol-specific framework of visualization for ICMP and UDP traffic data. The Guidelines we infer can be vital in the creation of "smart books" describing best practices in using visualization and interaction techniques to maintain network security.
„Über diesen Titel“ kann sich auf eine andere Ausgabe dieses Titels beziehen.
Suchergebnisse für Visualizing Network Traffic: for SiLK Data Exploration...
Foto des Verkäufers
Visualizing Network Traffic | for SiLK Data Exploration and Scan Detection
Anbieter: preigu, Osnabrück, Deutschland
Verkäuferbewertung 5 von 5 Sternen
Taschenbuch. Zustand: Neu. Visualizing Network Traffic | for SiLK Data Exploration and Scan Detection | Mai El-Shehaly | Taschenbuch | Englisch | VDM Verlag Dr. Müller | EAN 9783639251401 | Verantwortliche Person für die EU: preigu GmbH & Co. KG, Lengericher Landstr. 19, 49078 Osnabrück, mail[at]preigu[dot]de | Anbieter: preigu. Artikel-Nr. 101166751
Neu kaufen
EUR 58,00
Versand:
EUR 70,00
Von Deutschland nach USA
Anzahl: 5 verfügbar
Beispielbild für diese ISBN
Visualizing Network Traffic : for SiLK Data Exploration and Scan Detection
Verlag:
VDM Verlag Dr. Müller e.K., 2010
ISBN 10: 3639251407
ISBN 13: 9783639251401
Gebraucht
Softcover
Anbieter: Buchpark, Trebbin, Deutschland
Verkäuferbewertung 5 von 5 Sternen
Zustand: Sehr gut. Zustand: Sehr gut | Sprache: Englisch | Produktart: Bücher. Artikel-Nr. 7613755/2
Gebraucht kaufen
EUR 54,70
Versand:
EUR 105,00
Von Deutschland nach USA
Anzahl: 1 verfügbar