Attack Analyzer: A Network Analysis and Visualization Tool
Final rept. May-Sep 2006
ADVANCED TECHNICAL CONCEPTS BERKSHIRE NY
Pagination or Media Count:
The massive amounts of data that confront systems analysts as they monitor computer networks for security violations can be overwhelming. As a result, analysts may overlook critical details that may signal network break-ins or other system intrusions. This flood of data can consume systems analysts time and lead to missed security violations and in extreme cases could lead to the complete collapse of a computer network or networks creating dangers to those who depend on them. The author addresses this problem with the development of a prototype visualization tool that attempts to clarify when a computer networks security may be compromised. The tool itself, Attack Analyzer is described and the methodology and fieldwork testing used to create it are detailed. The tool uses a somewhat novel top-down, or deductive approach, moving from the general to the specific, rather than a bottom-up, or inductive method.
- Computer Systems Management and Standards