Intrusion and Misuse Detection in Large-Scale Systems

Robert F. Erbacher; Kenneth L. Walker; Deborah A. Frincke

doi:10.1109/38.974517

ComputerGraphics
2002
Issue No. 1 - January/February
Abstract - Intrusion and Misuse Detection in Large-Scale Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF HTML IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Robert F. Erbacher Articles by Kenneth L. Walker Articles by Deborah A. Frincke

Intrusion and Misuse Detection in Large-Scale Systems

January/February 2002 (vol. 22 no. 1)

pp. 38-48

	ASCII Text	x
	Robert F. Erbacher, Kenneth L. Walker, Deborah A. Frincke, "Intrusion and Misuse Detection in Large-Scale Systems," IEEE Computer Graphics and Applications, vol. 22, no. 1, pp. 38-48, January/February, 2002.

	BibTex	x
	@article{ 10.1109/38.974517, author = {Robert F. Erbacher and Kenneth L. Walker and Deborah A. Frincke}, title = {Intrusion and Misuse Detection in Large-Scale Systems}, journal ={IEEE Computer Graphics and Applications}, volume = {22}, number = {1}, issn = {0272-1716}, year = {2002}, pages = {38-48}, doi = {http://doi.ieeecomputersociety.org/10.1109/38.974517}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - IEEE Computer Graphics and Applications TI - Intrusion and Misuse Detection in Large-Scale Systems IS - 1 SN - 0272-1716 SP38 EP48 EPD - 38-48 A1 - Robert F. Erbacher, A1 - Kenneth L. Walker, A1 - Deborah A. Frincke, PY - 2002 VL - 22 JA - IEEE Computer Graphics and Applications ER -

Robert F. Erbacher

Kenneth L. Walker

Deborah A. Frincke

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/38.974517

Attacks and misuses of computer systems are major concerns of our time with the growth of network-based commerce and communication. The current network infrastructure is not geared toward defeating such attacks and current textual-based analysis techniques are insufficient for the task. The authors have developed information visualization techniques based around a glyph metaphor for visually representing the textual log information collected from systems. This "visual" analysis greatly improves the comprehend ability of the information, reduces the time required for complete analysis of the information, and allows for the analysis of information that otherwise would have gone by the wayside.

1. D. Polla et al., "A Framework for Cooperative Intrusion Detection," Proc. 21st Nat'l Information Systems Security Conf., Nat'l Inst. of Standards and Technology, Washington, D.C., 1998, pp. 361-373.
2. D. Zerkle et al., "A Data-Mining Analysis of RTID Alarms," Recent Advances in Intrusion Detection,Elsevier, Netherlands, 1999.
1. R.F. Erbacher and D. Frincke, "Visualization in Detection of Intrusions and Misuse in Large-Scale Networks," Proc. Int'l Conf. Information Visualization 2000, IEEE CS Press, Los Alamitos, Calif., 2000, pp. 294-299.
2. D. Polla et al., "A Framework for Cooperative Intrusion Detection," Proc. 21st Nat'l Information Systems Security Conf., Nat'l Inst. of Standards and Technology, Washington, D.C., 1998, pp. 361-373.
3. S. Snapp et al., "DIDS (Distributed Intrusion Detection System) Motivation, Architecture and An Early Prototype," Proc. Nat'l Information Systems Security Conf., Nat'l Inst. of Standards and Technology, Washington, D.C., 1991, pp. 167-176.
4. G. Vert, J. McConnell, and D. Frincke., "Towards a Mathematical Model for Intrusion," Proc. 21st Nat'l Information Systems Security Conf., Nat'l Inst. of Standards and Technology, Washington, D.C., 1998, pp. 329-337.
5. G. Grinstein, "Workshop on Information Exploration Shootout Project and Benchmark Data Sets: Evaluating How Visualization Does in Analyzing Real-World Data Analysis Problems," Proc. IEEE Visualization 97 Conf., IEEE CS Press, Los Alamitos, Calif., 1997, pp. 511-513.
6. K. Cox, S. Eick, and T. He, "3D Geographic Network Displays," ACM Sigmod Record, vol. 25, no. 4, Dec. 1996, p. 50.
7. E.E. Koutsofios et al., "Visualizing Large-Scale Telecommunication Networks and Services," Proc. IEEE Visualization 97 Conf., IEEE CS Press, Los Alamitos, Calif., 1997, pp. 457-461.
8. S. Eick and G.J. Wills, “Navigating Large Networks with Hierarchies,” Proc. Visualization '93, pp. 204-210, 1993.
9. R. Becker, S. Eick, and A. Wilks, "Visualizing Network Data," Readings in Information Visualization: Using Vision To Think, S. Card, J.D. Mackinlay, and B. Shneiderman, eds., Morgan Kaufman, San Francisco, 1999, pp. 215-227.
10. T. Bray, "Measuring the Web," Readings in Information Visualization: Using Vision To Think, S. Card, J.D. Mackinlay, and B. Shneiderman, eds., Morgan Kaufman, San Francisco, 1999, pp. 469-492.
11. C. Davidson, "What Your Database Hides Away," New Scientist no. 1855,9 Jan. 1993, pp. 28-31.

Citation:

Robert F. Erbacher, Kenneth L. Walker, Deborah A. Frincke, "Intrusion and Misuse Detection in Large-Scale Systems," IEEE Computer Graphics and Applications, vol. 22, no. 1, pp. 38-48, Jan.-Feb. 2002, doi:10.1109/38.974517

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.