Visualization Symposium, IEEE Pacific (2014)
Yokohama, Japan Japan
Mar. 4, 2014 to Mar. 7, 2014
Guihua Shan , Comput. Network Inf. Center, Beijing, China
Yang Wang , Comput. Network Inf. Center, Beijing, China
Maojin Xie , Comput. Network Inf. Center, Beijing, China
Haopu Lv , Northwestern Polytech. Univ. of China, Xi'an, China
Xuebin Chi , Comput. Network Inf. Center, Beijing, China
DNS (Domain Name System) is an essential component of the functionality of the Internet, which converts domain names to the IP addresses. The security of DNS is related to the whole Internet. DNS query log file provide the insights of the DNS security. In this paper we propose an interactive visual analysis system for the DNS log files to intuitively detect the anomalies in DNS query logs. With a theme river based ranking visualization linked with Heat-Dial-map and tree map, user could easy identify anomalies and then further analyze regional and temporal features to help the administrators figure out the reason. Moreover, the features of DNS queries in time and region could also be analysis with this system.
Data visualization, Rivers, Internet, Visualization, Heating, Market research, Image color analysis
Guihua Shan, Yang Wang, Maojin Xie, Haopu Lv and Xuebin Chi, "Visual Detection of Anomalies in DNS Query Log Data," 2014 IEEE Pacific Visualization Symposium (PacificVis)(PACIFICVIS), Yokohama, Japan, 2014, pp. 258-261.