Real-Time Visualization of Network Attacks on High-Speed Links

Page Content

Hyogon Kim - Korea University/PU Visitor

Sep 13, 2006

Size: 219.7MB

Download: Video Icon MP4 Video   Flash Icon Watch in your Browser (Flash Required)  

Abstract

In this talk, we will see that malicious traffic flows such as denial-of-service attacks and various scanning activities can be visualized in an intuitive manner. A simple but novel idea of plotting a packet using its source IP address, destination IP address, and the destination port in a 3-dimensional space graphically reveals ongoing attacks. Leveraging this property, combined with the fact that only three header fields per each packet need to be examined, a fast attack detection and classification algorithm can be devised.

About the Speaker

Prof. Hyogon Kim is visiting Purdue University for the fall semester this year from Korea University, Seoul, Korea. He is an associate professor at Korea U., where he teaches Internet protocols and wireless communication. He received a Ph.D. from the University of Pennsylvania in 1996, and went on to Bell Communications Research (Bellcore, now Telcordia Technologies) to work on Internet protocols and architecture issues. He joined Korea University in 2003, and has been working on Internet security and wireless network performance.

Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...

© 1999-2013 Purdue University. All rights reserved.

Use/Reuse Guidelines

CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.