STARLORD: Linked Security Data Exploration in a 3D Graph

Laetitia Leichtnam 1 Eric Totel 1 Nicolas Prigent 2 Ludovic Mé 1
1 CIDRE - Confidentialité, Intégrité, Disponibilité et Répartition
CentraleSupélec, Inria Rennes – Bretagne Atlantique , IRISA-D1 - SYSTÈMES LARGE ÉCHELLE
Abstract : In this paper, we present a novel modelization and visualization approach for heterogeneous sources of data. We represent our data by using a model inspired by STIX. Then, we use clustering algorithms to select interesting information to explore in a visualization panel. The visualization is based on a 3D graph representation that highlights the link between malicious event and allows to focus on relevant security artifacts. We illustrate our approach with two case studies using datasets containing network capture of the wannacry attack.
Document type :
Conference papers
Complete list of metadatas

Cited literature [9 references]  Display  Hide  Download

https://hal.inria.fr/hal-01619234
Contributor : Eric Totel <>
Submitted on : Thursday, October 19, 2017 - 11:08:31 AM
Last modification on : Friday, September 13, 2019 - 9:51:33 AM
Long-term archiving on : Saturday, January 20, 2018 - 1:58:59 PM

File

17072017_vizsec.pdf
Files produced by the author(s)

Identifiers

Citation

Laetitia Leichtnam, Eric Totel, Nicolas Prigent, Ludovic Mé. STARLORD: Linked Security Data Exploration in a 3D Graph. VizSec - IEEE Symposium on Visualization for Cyber Security, Oct 2017, Phoenix, United States. pp.1 - 4, ⟨10.1109/VIZSEC.2017.8062203⟩. ⟨hal-01619234⟩

Share

Metrics

Record views

1248

Files downloads

434