Skip to main content
SpringerLink
Log in
Book cover

VizSEC 2007 pp 101–114Cite as

NetBytes Viewer: An Entity-Based NetFlow Visualization Utility for Identifying Intrusive Behavior

  • Chapter

Part of the book series: Mathematics and Visualization ((MATHVISUAL))

Abstract

NetBytes Host Viewer is an interactive visualization tool designed to show the historical network flow data per port of an individual host machine or subnet on a network over time, using a 3D impulse graph plot. Such visualizations allow network administrators to quickly and effectively diagnose infected or malfunctioning computers by viewing data transmission patterns for each port on the entity. NetBytes has a set of interactive features which help to deal with the problems associated with displaying a 3D graph on a 2D screen. First, NetBytes offers a “selector” mode which allows the user to highlight specific ports (or times) on the graph using a slider and snap buttons. From the selector, the user can launch a set of 2D graphs (Bytes vs. Time and Bytes vs. Ports) to acquire more detailed information about the host with less clutter. Lastly, the user is able to rotate the 3D graph in any direction to mitigate occlusion. The long term objectives of this work include the integration of the NetBytes Viewer with complementary visualizations of the overall network. This application will integrate with a larger network analysis tool and be utilized as a drill-down mechanism.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD   54.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Author information

Authors and Affiliations

  1. Dalhousie University, Halifax, NS

    T. Taylor, S. Brooks & J. McHugh

Authors
  1. T. Taylor
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. S. Brooks
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. J. McHugh
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Secure Decisions Division, Applied Vision, Inc., 6 Bayview Ave., Northport, NY, 11768, USA

    John R. Goodall

  2. Department of Electrical Engineering and Computer Science, United States Military Academy, West Point, NY, 10996, USA

    Gregory Conti

  3. Department of Computer Science, University of California, One Shields Avenue, Davis, CA, 95616, USA

    Kwan-Liu Ma

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this chapter

Cite this chapter

Taylor, T., Brooks, S., McHugh, J. (2008). NetBytes Viewer: An Entity-Based NetFlow Visualization Utility for Identifying Intrusive Behavior. In: Goodall, J.R., Conti, G., Ma, KL. (eds) VizSEC 2007. Mathematics and Visualization. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-78243-8_7

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-78243-8_7

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-78242-1

  • Online ISBN: 978-3-540-78243-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation