Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection

研究成果: 著書/レポートタイプへの貢献会議での発言

7 引用 (Scopus)

抄録

This paper treats network data visualization using Parallel Coordinates version of Time-tunnel (PCTT) for intrusion detection. Originally, Time-tunnel is a multidimensional data visualization tool and its Parallel Coordinates version provides the functionality of Parallel Coordinates visualization. It can be used for the visualization of network data because IP packet data have many attributes and such multiple attribute data can be visualized using Parallel Coordinates. In this paper, the authors propose the combinatorial use of PCTT and 2Dto2D visualization functionality for the intrusion detection. 2Dto2D visualization functionality, whose concept is originally derived from nicter Cube, displays multiple lines those represent four dimensional (four attributes) data drawn from one (2D of two attributes) plane to the other (2D of the other two attributes) plane in a 3D space. This 2Dto2D visualization functionality was introduced to PCTT. Network attacks have a certain access pattern strongly related to the four attributes of IP packet data, i.e., source IP, destination IP, source Port, and destination Port. So, 2Dto2D visualization is useful for detecting such access patterns. In this paper, the authors show several network attack patterns visualized using PCTT with 2Dto2D visualization as examples for the intrusion detection.

元の言語英語
ホスト出版物のタイトルProceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013
ページ1088-1093
ページ数6
DOI
出版物ステータス出版済み - 8 19 2013
イベント27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013 - Barcelona, スペイン
継続期間: 3 25 20133 28 2013

出版物シリーズ

名前Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013

その他

その他27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013
スペイン
Barcelona
期間3/25/133/28/13

Fingerprint

Data visualization
Intrusion detection
Tunnels
Visualization

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Computer Science Applications

これを引用

Okada, Y. (2013). Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection. : Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013 (pp. 1088-1093). [6550540] (Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013). https://doi.org/10.1109/WAINA.2013.185

Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection. / Okada, Yoshihiro.

Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013. 2013. p. 1088-1093 6550540 (Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013).

研究成果: 著書/レポートタイプへの貢献会議での発言

Okada, Y 2013, Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection. : Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013., 6550540, Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013, pp. 1088-1093, 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013, Barcelona, スペイン, 3/25/13. https://doi.org/10.1109/WAINA.2013.185
Okada Y. Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection. : Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013. 2013. p. 1088-1093. 6550540. (Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013). https://doi.org/10.1109/WAINA.2013.185
Okada, Yoshihiro. / Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection. Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013. 2013. pp. 1088-1093 (Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013).
@inproceedings{4043e4206fb44b509079619008d2510a,
title = "Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection",
abstract = "This paper treats network data visualization using Parallel Coordinates version of Time-tunnel (PCTT) for intrusion detection. Originally, Time-tunnel is a multidimensional data visualization tool and its Parallel Coordinates version provides the functionality of Parallel Coordinates visualization. It can be used for the visualization of network data because IP packet data have many attributes and such multiple attribute data can be visualized using Parallel Coordinates. In this paper, the authors propose the combinatorial use of PCTT and 2Dto2D visualization functionality for the intrusion detection. 2Dto2D visualization functionality, whose concept is originally derived from nicter Cube, displays multiple lines those represent four dimensional (four attributes) data drawn from one (2D of two attributes) plane to the other (2D of the other two attributes) plane in a 3D space. This 2Dto2D visualization functionality was introduced to PCTT. Network attacks have a certain access pattern strongly related to the four attributes of IP packet data, i.e., source IP, destination IP, source Port, and destination Port. So, 2Dto2D visualization is useful for detecting such access patterns. In this paper, the authors show several network attack patterns visualized using PCTT with 2Dto2D visualization as examples for the intrusion detection.",
author = "Yoshihiro Okada",
year = "2013",
month = "8",
day = "19",
doi = "10.1109/WAINA.2013.185",
language = "English",
isbn = "9780769549521",
series = "Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013",
pages = "1088--1093",
booktitle = "Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013",

}

TY - GEN

T1 - Network data visualization using parallel coordinates version of time-tunnel with 2dto2d visualization for intrusion detection

AU - Okada, Yoshihiro

PY - 2013/8/19

Y1 - 2013/8/19

N2 - This paper treats network data visualization using Parallel Coordinates version of Time-tunnel (PCTT) for intrusion detection. Originally, Time-tunnel is a multidimensional data visualization tool and its Parallel Coordinates version provides the functionality of Parallel Coordinates visualization. It can be used for the visualization of network data because IP packet data have many attributes and such multiple attribute data can be visualized using Parallel Coordinates. In this paper, the authors propose the combinatorial use of PCTT and 2Dto2D visualization functionality for the intrusion detection. 2Dto2D visualization functionality, whose concept is originally derived from nicter Cube, displays multiple lines those represent four dimensional (four attributes) data drawn from one (2D of two attributes) plane to the other (2D of the other two attributes) plane in a 3D space. This 2Dto2D visualization functionality was introduced to PCTT. Network attacks have a certain access pattern strongly related to the four attributes of IP packet data, i.e., source IP, destination IP, source Port, and destination Port. So, 2Dto2D visualization is useful for detecting such access patterns. In this paper, the authors show several network attack patterns visualized using PCTT with 2Dto2D visualization as examples for the intrusion detection.

AB - This paper treats network data visualization using Parallel Coordinates version of Time-tunnel (PCTT) for intrusion detection. Originally, Time-tunnel is a multidimensional data visualization tool and its Parallel Coordinates version provides the functionality of Parallel Coordinates visualization. It can be used for the visualization of network data because IP packet data have many attributes and such multiple attribute data can be visualized using Parallel Coordinates. In this paper, the authors propose the combinatorial use of PCTT and 2Dto2D visualization functionality for the intrusion detection. 2Dto2D visualization functionality, whose concept is originally derived from nicter Cube, displays multiple lines those represent four dimensional (four attributes) data drawn from one (2D of two attributes) plane to the other (2D of the other two attributes) plane in a 3D space. This 2Dto2D visualization functionality was introduced to PCTT. Network attacks have a certain access pattern strongly related to the four attributes of IP packet data, i.e., source IP, destination IP, source Port, and destination Port. So, 2Dto2D visualization is useful for detecting such access patterns. In this paper, the authors show several network attack patterns visualized using PCTT with 2Dto2D visualization as examples for the intrusion detection.

UR - http://www.scopus.com/inward/record.url?scp=84881437120&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84881437120&partnerID=8YFLogxK

U2 - 10.1109/WAINA.2013.185

DO - 10.1109/WAINA.2013.185

M3 - Conference contribution

SN - 9780769549521

T3 - Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013

SP - 1088

EP - 1093

BT - Proceedings - 27th International Conference on Advanced Information Networking and Applications Workshops, WAINA 2013

ER -