CyberPetri at CDX 2016: Real-time Network Situation Awareness
CyberPetri is a novel visualization technique that provides a flexible map of the network based on available characteristics, such as IP address, operating system, or service. Previous work introduced CyberPetri as a visualization feature in Ocelot, a network defense tool that helped security analysts understand and respond to an active defense scenario. In this paper we present a case study in which we use the CyberPetri visualization technique to support real-time situation awareness during the 2016 Cyber Defense Exercise.
- Research Organization:
- Pacific Northwest National Lab. (PNNL), Richland, WA (United States)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- AC05-76RL01830
- OSTI ID:
- 1346299
- Report Number(s):
- PNNL-SA-119384; 453040300
- Resource Relation:
- Conference: IEEE Symposium on Visualization for Cyber Security (VizSec 2016), October 24, 2016, Baltimore, Maryland
- Country of Publication:
- United States
- Language:
- English
Similar Records
Situational Awareness of Network System Roles (SANSR)
Situational Awareness of Network System Roles (SANSR)
Real-Time Visualization of Network Behaviors for Situational Awareness
Conference
·
Sun Jan 01 00:00:00 EST 2017
·
OSTI ID:1346299
Situational Awareness of Network System Roles (SANSR)
Software
·
Fri Jan 18 00:00:00 EST 2019
·
OSTI ID:1346299
Real-Time Visualization of Network Behaviors for Situational Awareness
Conference
·
Tue Sep 14 00:00:00 EDT 2010
·
OSTI ID:1346299
+2 more