Visualizing Cyber Attacks using IP Matrix

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Hideki Koike Articles by Kazuhiro Ohno Articles by Kanba Koizumi

IEEE Workshops on Visualization for Computer Security (VizSec'05)

Minneapolis, Minnesota

October 26-October 26

ISBN: 0-7803-9477-1

	ASCII Text	x
	Hideki Koike, Kazuhiro Ohno, Kanba Koizumi, "Visualizing Cyber Attacks using IP Matrix," Visualization for Computer Security, IEEE Workshops on, pp. 11, IEEE Workshops on Visualization for Computer Security (VizSec'05), 2005.

	BibTex	x
	@article{ 10.1109/VIZSEC.2005.22, author = {Hideki Koike and Kazuhiro Ohno and Kanba Koizumi}, title = {Visualizing Cyber Attacks using IP Matrix}, journal ={Visualization for Computer Security, IEEE Workshops on}, volume = {0}, year = {2005}, isbn = {0-7803-9477-1}, pages = {11}, doi = {http://doi.ieeecomputersociety.org/10.1109/VIZSEC.2005.22}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Visualization for Computer Security, IEEE Workshops on TI - Visualizing Cyber Attacks using IP Matrix SN - 0-7803-9477-1 SP EP A1 - Hideki Koike, A1 - Kazuhiro Ohno, A1 - Kanba Koizumi, PY - 2005 KW - intrusion detection KW - information visualization KW - information security KW - computer virus KW - Internet worm KW - virus visualization KW - worm visualization KW - Internet forecasting VL - 0 JA - Visualization for Computer Security, IEEE Workshops on ER -

Hideki Koike, University of Electro-Communications

Kazuhiro Ohno, University of Electro-Communications

Kanba Koizumi, Keio University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/VIZSEC.2005.22

An Internet cyber threat monitoring system detects cyber threats using network sensors deployed at particular points on the Internet, statistically analyzes the time of attack, source of attack, and type of attack, and then visualizes the result of this analysis. Existing systems, however, simply visualize country-by-country statistics of attacks or hourly changes of attacks. Using these systems, it is dif- ficult to understand the source of attack, the diffusion of the attack, or the relation between the target and the source of the attack.

or the relation between the target and the source of the attack. This paper described a method for visualizing cyber threats by using 2-dimensional matrix representation of IP addresses. The advantages of this method are that: (1) the logical distance of IP addresses is represented intuitively, (2) Internet address space is visualized economically, (3) macroscopic information (Internet level) and microscopic information (local level) are visualized simultaneously. By using this visualization framework, propagation of the Welchia worm and the Sasser.D worm are visualized.

Index Terms:

intrusion detection, information visualization, information security, computer virus, Internet worm, virus visualization, worm visualization, Internet forecasting

Citation:

Hideki Koike, Kazuhiro Ohno, Kanba Koizumi, "Visualizing Cyber Attacks using IP Matrix," vizsec, pp.11, IEEE Workshops on Visualization for Computer Security (VizSec'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.