An Interactive Security Analysis System of Large Scale NetFlow Data

碩士 === 國立臺灣大學 === 資訊管理學研究所 === 103 === As the network volume grows rapidly, network crimes can hide behind the huge network traffic. In order to let IT security people find evidences fastly and effectively from such a huge network traffic, we proposed a interactive, visualable network query system-N...

Full description

Bibliographic Details
Main Authors: Zhen-Hou Zhou, 周振澔
Other Authors: 孫雅麗
Format: Others
Language:zh-TW
Published: 2015
Online Access:http://ndltd.ncl.edu.tw/handle/76979489672647379295
Description
Summary:碩士 === 國立臺灣大學 === 資訊管理學研究所 === 103 === As the network volume grows rapidly, network crimes can hide behind the huge network traffic. In order to let IT security people find evidences fastly and effectively from such a huge network traffic, we proposed a interactive, visualable network query system-NetActy. In this thesis, we improve the interactivity and visualization process, by takeing the balance between workload and data locality into consider. We formulate the job assignment problem into a Linear Programming problem and solve it by a heuristic solution-Algorithm 1. In the last, we evaluate the performance of Algorithm 1 and make sure that Algorithm 1 can actually balance the workload without violating data locality. Besides, we solve the problem encountered in visualization part by applying current OS’s solution.