Network Traffic Analysis With Query Driven VisualizationSC 2005 HPC Analytics Results (2005)
Stockinger, Kurt, Wu, Kesheng, Campbell, Scott, Lau, Stephen, Fisk, Mike, Gavrilov, Eugene, ...
Our analytics challenge is is to identify, characterize, and visualize anomalous subsets of large collections of network connection data. We use a combination of HPC resources, advanced algorithms,...
Bitmap Algorithms for Counting Active Flows on High (2003)
Cristian Estan, George Varghese, Mike Fisk
This paper presents a family of bitmap algorithms that address the problem of counting the number of distinct header patterns (flows) seen on a high speed link. Such counting can be used to detect...
Bitmap Algorithms for Counting Active Flows on High (2003)
Cristian Estan, George Varghese, Mike Fisk
This paper presents a family of bitmap algorithms that address the problem of counting the number of distinct header patterns (flows) seen on a high speed link. Such counting can be used to detect...
Immersive Network Monitoring (2003)
Mike Fisk, Steven A. Smith, Paul M. Weber, Satyam Kothapally, Thomas P. Caudell
In this paper we present our immersive network monitoring system that is used for real-time and retrospective analysis of network traffic. Our 3-D representations are designed from the perspective of...
Agile and Scalable Analysis of Network Events (2003)
The state of the art in general purpose software systems for large-scale traffic measurement has not progressed much past the venerable libpcap. In this paper we describe a new data analysis system...
Agile and Scalable Analysis of Network Events (2002)
The state of the art in general purpose software systems for large-scale traffic measurement has not progressed much past the venerable libpcap. In this paper we describe a new data analysis system...
An Inter-Realm, Cyber-Security Infrastructure for Virtual Supercomputing (2001)
Jalal Al-muhtadi, Wu-chun Feng, Mike Fisk
Virtual supercomputing, (i.e., high-performance grid computing) , is poised to revolutionize the way we think about and use computing. However, the security of the links interconnecting the nodes...
Fast Content-Based Packet Handling for Intrusion Detection (2001)
It is becoming increasingly common for network devices to handle packets based on the contents of packet payloads. Example applications include intrusion detection, firewalls, web proxies, and layer...
Dynamic Adjustment of TCP Window Sizes (2000)
The original design of TCP failed to support reasonable performance over networks with large bandwidths and high round-trip times. Subsequent work on TCP has enabled the use of larger flow-control...
Applying Fast String Matching to Intrusion Detection (1998)
The performance of signature-based network intrusion detection tools is dominated by the string matching of packets against many signatures. In this paper we study how the popular intrusion detection...
Fast Content-Based Packet Handling for Intrusion Detection (1998)
It is becoming increasingly common for network devices to handle packets based on the contents of packet payloads. Example applications include intrusion detection, firewalls, web proxies, and layer...