Honours Project 2010
Posted on 17th February, 2010 by Samuel
Network telescopes provide us with a sampled view of illegitimate traffic on the internet. They capture traffic destined for un-used address space and thus receive little or no legitimate traffic. When analysed, the traffic provides insight into events such as Denial of Service (DoS) attacks, worm propagation and other nefarious events. When this analysis is combined with the appropriate visualisation techniques one is able to learn a great deal about the current state of illegitimate traffic on the internet.
This project will focus on the design and implementation of a information visualisation framework that will be used to create a dashboard to monitor data from the Rhodes network telescope (RUscope). The framework will be responsible for the analysis of captured telescope traffic as well as displaying information to a user via a dynamic dashboard interface..
The frameworks goal is to provide a dynamic and graphical means of analysing nefarious network traffic and will be used for monitoring traffic as well as aiding future research into un-solicited internet traffic. It will also be required to visualise multiple datasets in an effective manner. By creating an automated and visual way to monitor network telescope traffic it becomes easier to learn from results and interpret and understand events. The various security metrics used by the dashboard application also provide insight into how reputable metrics benefit information security.