Part of a book
Lecture Notes in Computer Science, Theory and Models for Cyber Situation Awareness, vol. 10030, Springer, 2017, pp. 47-65
Healey, C. G., Hao, L., & Hutchinson, S. E. (2017). Lessons learned: Visualizing cyber situation awareness in a network security domain (Theory and Models for Cyber Situation Awareness, Vol. 10030, pp. 47–65). Springer.
Healey, C. G., L. Hao, and S. E. Hutchinson. “Lessons Learned: Visualizing Cyber Situation Awareness in a Network Security Domain.” In , 10030:47–65. Theory and Models for Cyber Situation Awareness. Lecture Notes in Computer Science. Springer, 2017.
Healey, C. G., et al. Lessons Learned: Visualizing Cyber Situation Awareness in a Network Security Domain. Theory and Models for Cyber Situation Awareness, vol. 10030, Springer, 2017, pp. 47–65.
This chapter discusses lessons learned working with cyber situation awareness and network security domain experts to integrate visualizations into their current workflows. Working closely with network security experts, we discovered a critical set of requirements that a visualization must meet to be considered for use by these domain experts. We next present two separate examples of visualizations that address these requirements: a flexible web-based application that visualizes network traffic and security data through analyst-driven correlated charts and graphs, and a set of ensemble-based extensions to visualize network traffic and security alerts using existing and future ensemble visualization algorithms.