Visual analysis of corporate network intelligence

Abstracting and reasoning on yesterdays for acting today

D. Lalanne, Enrico Bertini, P. Hertzog, P. Bados

    Research output: Contribution to journalArticle

    Abstract

    This article proposes to go beyond the standard visualization application for security management, which is usually day-to-day monitoring. For this purpose, it introduces a pyramidal vision of the network intelligence and of the respective role of information visualization to support not only security engineers, but also analysts and managers. The paper first introduces our holistic vision and discusses the need to reduce the complexity of network data in order to abstract analysis and trends over time and further to convert decisions into actions. The article further introduces the analysis tasks we are currently tackling. The two following sections present two different ways to overview network data concentrating on specific dimensions of network security: user and application centric firstly, and alarm and temporal centric secondly. Finally this article concludes with the limitations and challenges introduced by our approach.

    Original languageEnglish (US)
    Pages (from-to)115-130
    Number of pages16
    JournalMathematics and Visualization
    DOIs
    StatePublished - 2008

    Fingerprint

    Visualization
    Reasoning
    Network security
    Information Visualization
    Managers
    Network Security
    Engineers
    Convert
    Monitoring
    Intelligence
    Vision
    Trends
    Standards

    ASJC Scopus subject areas

    • Computer Graphics and Computer-Aided Design
    • Applied Mathematics
    • Geometry and Topology
    • Modeling and Simulation

    Cite this

    Visual analysis of corporate network intelligence : Abstracting and reasoning on yesterdays for acting today. / Lalanne, D.; Bertini, Enrico; Hertzog, P.; Bados, P.

    In: Mathematics and Visualization, 2008, p. 115-130.

    Research output: Contribution to journalArticle

    @article{0ca71d2d6b834f8d853d2538243075a8,
    title = "Visual analysis of corporate network intelligence: Abstracting and reasoning on yesterdays for acting today",
    abstract = "This article proposes to go beyond the standard visualization application for security management, which is usually day-to-day monitoring. For this purpose, it introduces a pyramidal vision of the network intelligence and of the respective role of information visualization to support not only security engineers, but also analysts and managers. The paper first introduces our holistic vision and discusses the need to reduce the complexity of network data in order to abstract analysis and trends over time and further to convert decisions into actions. The article further introduces the analysis tasks we are currently tackling. The two following sections present two different ways to overview network data concentrating on specific dimensions of network security: user and application centric firstly, and alarm and temporal centric secondly. Finally this article concludes with the limitations and challenges introduced by our approach.",
    author = "D. Lalanne and Enrico Bertini and P. Hertzog and P. Bados",
    year = "2008",
    doi = "10.1007/978-3-540-78243-8_8",
    language = "English (US)",
    pages = "115--130",
    journal = "Mathematics and Visualization",
    issn = "2197-666X",
    publisher = "Springer Science and Business Media Deutschland GmbH",

    }

    TY - JOUR

    T1 - Visual analysis of corporate network intelligence

    T2 - Abstracting and reasoning on yesterdays for acting today

    AU - Lalanne, D.

    AU - Bertini, Enrico

    AU - Hertzog, P.

    AU - Bados, P.

    PY - 2008

    Y1 - 2008

    N2 - This article proposes to go beyond the standard visualization application for security management, which is usually day-to-day monitoring. For this purpose, it introduces a pyramidal vision of the network intelligence and of the respective role of information visualization to support not only security engineers, but also analysts and managers. The paper first introduces our holistic vision and discusses the need to reduce the complexity of network data in order to abstract analysis and trends over time and further to convert decisions into actions. The article further introduces the analysis tasks we are currently tackling. The two following sections present two different ways to overview network data concentrating on specific dimensions of network security: user and application centric firstly, and alarm and temporal centric secondly. Finally this article concludes with the limitations and challenges introduced by our approach.

    AB - This article proposes to go beyond the standard visualization application for security management, which is usually day-to-day monitoring. For this purpose, it introduces a pyramidal vision of the network intelligence and of the respective role of information visualization to support not only security engineers, but also analysts and managers. The paper first introduces our holistic vision and discusses the need to reduce the complexity of network data in order to abstract analysis and trends over time and further to convert decisions into actions. The article further introduces the analysis tasks we are currently tackling. The two following sections present two different ways to overview network data concentrating on specific dimensions of network security: user and application centric firstly, and alarm and temporal centric secondly. Finally this article concludes with the limitations and challenges introduced by our approach.

    UR - http://www.scopus.com/inward/record.url?scp=84898878437&partnerID=8YFLogxK

    UR - http://www.scopus.com/inward/citedby.url?scp=84898878437&partnerID=8YFLogxK

    U2 - 10.1007/978-3-540-78243-8_8

    DO - 10.1007/978-3-540-78243-8_8

    M3 - Article

    SP - 115

    EP - 130

    JO - Mathematics and Visualization

    JF - Mathematics and Visualization

    SN - 2197-666X

    ER -