期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2018
卷号:96
期号:1
页码:189
出版社:Journal of Theoretical and Applied
摘要:Because of the rapid increase in the size and complexity of computer networks and the growing increase in the number of users, network security administrators are being overloaded with large volumes of data (logs from various sources and many security events to monitor). Due to its nature, these data are impossible to handle manually, and even most automated data analysis tools are inadequate. One of the main effective solutions for securing complex computer networks is visualization. Visualization transforms data into visual objects which help administrators to achieve real-time supervision, fast reaction and real-time detection of emerging attacks. In this paper, a novel treemaps based network visualization scheme is proposed. The proposed scheme groups many network traffic attributes (source IP, destination IP, port number and packet size) in a simple and manageable interface. The proposed scheme also combines traffic from the same country in single Treemap rectangular region. Usability analyses show that the proposed scheme is efficient and has a high level of usability.
关键词:Network Security; Data Visualization Techniques; Treemap; Geolocation Database
