Browsing by Author "Ghoniem M."

Filter results by typing the first few letters
Now showing 1 - 2 of 2
  • Thumbnail Image
    Item
    VAFLE: Visual analytics of firewall log events
    (2014) Ghoniem M.; Shurkhovetskyy G.; Bahey A.; Otjacques B.; CRP; Gabriel Lippmann; 41 rue du Brill; L-4422 Belvaux; Luxembourg; M.S.A. University; Wahat Road; 6th of October City; Egypt; Nile University; C.I.T School; 6th of October City; Egypt
    In this work, we present VAFLE, an interactive network security visualization prototype for the analysis of firewall log events. Keeping it simple yet effective for analysts, we provide multiple coordinated interactive visualizations augmented with clustering capabilities customized to support anomaly detection and cyber situation awareness. We evaluate the usefulness of the prototype in a use case with network traffic datasets from previous VAST Challenges, illustrating its effectiveness at promoting fast and well-informed decisions. We explain how a security analyst may spot suspicious traffic using VAFLE. We further assess its usefulness through a qualitative evaluation involving network security experts, whose feedback is reported and discussed. � 2014 SPIE-IS&T.
  • Thumbnail Image
    Item
    Visual analytics for network security
    (2012) Shurkhovetskyy G.; Bahey A.; Ghoniem M.; Modern Sciences and Arts University; Egypt; Nile University; Egypt
    To visualize the VAST 2012 Mini Challenge 2 datasets, we use the InfoVis Toolkit (IVTK). Custom visualizations as well as extra interaction capabilities have been added to the toolkit. Custom-made Python scripts are used for data preprocessing purposes. In this work, we show how visualization tools may be combined to leverage network forensic analysis tasks. � 2012 IEEE.