 |
|
 |
|
|
|
The materials shown on this page are copyright protected by their authors and/or respective institutions. |
|
|
|
Starlight - Network Security |
|
Author(s):
(unknown) |
Institution:
Pacific Northwest National Laboratory - USA |
Year:
2003 |
URL:
http://starlight.pnl.gov/appSecurity.stm |
Project Description:
Starlight is a generic information visualization tool, developed by the Pacific Northwest National Laboratory (USA), that is applicable to a wide range of problems.
Computer network security has become an increasingly pressing issue for many organizations. Starlight can enable network analysts to quickly achieve and maintain an in-depth understanding of network vulnerabilities and security status.
The first image shows a Starlight Network View of computer NIDS data associated with an actual network intrusion incident. In this incident, several unauthorized users gained access to computers on official U.S. Government computer networks. In this example of "edge-oriented" network data visualization, individual NIDS log entries describing suspicious connections among computers are represented as edges in the display, with the nodes representing the individual computers (IP addresses) referenced in the data. This depiction portrays approximately 10,000 connections involving several hundred discrete IP addresses. The edges in this display have been color-encoded according to the "warning level" of the connection, with bright yellow indicating the most critical events. The second image is a closeup view of the suspicious connection (yellow line, left) shown in the preceeding image.
|
|
|
|
|
|
Comments (0):
|
|
|
|
|
*Note* Before you submit your comment, bear in mind there's no guarantee it will be seen by this project's author. In case you want to contact the author directly, please follow the provided URL. |
Leave a Comment: |
|
|
|
* COMMENTS HAVE BEEN TEMPORARILY DISABLED *
(We're looking for the best solution to avoid unwanted SPAM)
|
|