ELVIS: Extensible Log VISualization - Archive ouverte HAL Access content directly
Conference Papers Year : 2013

ELVIS: Extensible Log VISualization

(1) , (1) , (1) , (2)
1
2

Abstract

In this article, we propose ELVIS, a security-oriented log visualization tool that allows security experts to visually explore numerous types of log files through relevant representations. When a log file is loaded into ELVIS, a summary view is displayed. This view is the starting point for exploring the log. The analyst can then choose to explore certain fields or sets of fields from the dataset. To that end, ELVIS selects relevant representations according to the fields chosen by the analyst for display.
Fichier principal
Vignette du fichier
paper_29.pdf (476.8 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-00875668 , version 1 (22-10-2013)

Identifiers

  • HAL Id : hal-00875668 , version 1

Cite

Christopher Humphries, Nicolas Prigent, Christophe Bidan, Frédéric Majorczyk. ELVIS: Extensible Log VISualization. VIZSEC, Oct 2013, ATLANTA, United States. ⟨hal-00875668⟩
776 View
797 Download

Share

Gmail Facebook Twitter LinkedIn More