References to publications, sorted by year and author:
| D’Amico, AD, Goodall, JR, Tesone, DR, and Kopylec, JK (2007). | Visual Discovery in Computer Network Defense |
| IEEE Computer Graphics and Applications 27(5):20-27. | |
| Conti, G, Abdullah, K, Grizzard, J, Stasko, J, Copeland, JA, Ahamad, M, Owen, H, and Lee, C (2006). | Countering Security Analyst and Network Administrator Overload Through Alert and Packet Visualization |
| IEEE Computer Graphics and Applications 26(2):60-70. | |
| Foresti, S, Agutter, J, Livnat, Y, Moon, S, and Erbacher, R (2006). | Visual correlation of network alerts |
| IEEE Computer Graphics and Applications 26(2):48-59. | |
| Goodall, JR, Lutters, WG, Rheingans, P, and Komlodi, A (2006). | Focusing on Context in Network Traffic Analysis |
| IEEE Computer Graphics and Applications 26(2):72-80. | |
| Itoh, T, Takakura, H, Sawada, A, and Koyamada, K (2006). | Hierarchical visualization of network intrusion detection data |
| IEEE Computer Graphics and Applications 26(2):40-47. | |
| Ren, P, Gao, Y, Li, Z, Chen, Y, and Watson, B (2006). | IDGraphs: intrusion detection and analysis using stream compositing |
| IEEE Computer Graphics and Applications 26(2):28-39. | |
| Thompson, RS, Rantanen, EM, and Yurcik, W (2006). | Network intrusion detection cognitive task analysis: Textual and visual tool usage and recommendations |
| In: Proceedings of the Human Factors and Ergonomics Society Annual Meeting (HFES), pages 669-673. | |
| Abdullah, K, Lee, C, Conti, G, and Copeland, JA (2005). | Visualizing Network Data for Intrusion Detection |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW), pages 100-108. | |
| Conti, G, Ahamad, M, and Stasko, J (2005). | Attacking information visualization system usability overloading and deceiving the human |
| In: Proceedings of the 2005 symposium on Usable privacy and security, pages 89-100. | |
| D’Amico, A, Whitley, K, Tesone, D, O’Brien, B, and Roth, E (2005). | Achieving Cyber Defense Situational Awareness: A Cognitive Task Analysis of Information Assurance Analysts |
| In: Proceedings of the Human Factors and Ergonomics Society 49th Annual Meeting, pages 229-233. | |
| Erbacher, RF and Garber, M (2005). | Visualization Techniques for Intrusion Behavior Identification |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW), pages 84-91. | |
| Goodall, JR (2005). | User Requirements and Design of a Visualization for Intrusion Detection Analysis |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW). IEEE Press, pages 394-401. | |
| Goodall, JR, Ozok, AA, Lutters, WG, Rheingans, P, and Komlodi, A (2005). | A User-Centered Approach to Visualizing Network Traffic for Intrusion Detection |
| In: Extended Abstracts of the ACM Conference on Human Factors in Computing Systems (CHI). ACM Press, pages 1403-1406. | |
| Krasser, S, Conti, G, Grizzard, J, Gribschaw, J, and Owen, H (2005). | Real-Time and Forensic Network Data Analysis Using Animated and Coordinated Visualization |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW), pages 42-49. | |
| Lakkaraju, K, Bearavolu, R, Slagell, A, and Yurcik, W (2005). | Closing-the-Loop: Discovery and Search in Security Visualizations |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW), pages 58-63. | |
| Livnat, Y, Agutter, J, Moon, S, Erbacher, RF, and Foresti, S (2005). | A Visualization Paradigm for Network Intrusion Detection |
| In: Proceedings of the IEEE Workshop on Information Assurance and Security (IAW), pages 92-99. | |
| Komlodi, A, Goodall, JR, and Lutters, WG (2004). | An Information Visualization Framework for Intrusion Detection |
| In: Extended Abstracts of the ACM Conference on Human Factors in Computing Systems (CHI). ACM Press, pages 1743-1746. | |
| Teoh, ST, Ma, K, Wu, SF, and Jankun-Kelly, TJ (2004). | Detecting Flaws and Intruders with Visual Data Analysis |
| IEEE Computer Graphics and Applications 24(5):27-35. | |
| Scott, C, Nyarko, K, Capers, T, and Ladeji-Osias, J (2003). | Network intrusion visualization with NIVA, an intrusion detection visual and haptic analyzer |
| Information Visualization 2(2):82-94. | |
| Stolze, M, Pawlitzek, R, and Hild, S (2003). | Task Support for Network Security Monitoring |
| In: ACM CHI Workshop on System Administrators Are Users, Too: Designing Workspaces for Managing Internet-Scale Systems. | |
| Stolze, M, Pawlitzek, R, and Wespi, A (2003). | Visual Problem-Solving Support for New Event Triage in Centralized Network Security Monitoring: Challenges, Tools and Benefits |
| In: GI-SIDAR conference IT-Incident Management & IT-Forensics (IMF). | |
| Yurcik, W, Barlow, J, and Rosendale, J (2003). | Maintaining Perspective on Who Is The Enemy in the Security Systems Administration of Computer Networks |
| In: ACM CHI Workshop on System Administrators Are Users, Too: Designing Workspaces for Managing Internet-Scale Systems. | |
| Yurcik, W, Barlow, J, Lakkaraju, K, and Haberman, M (2003). | Two Visual Computer Network Security Monitoring Tools Incorporating Operator Interface Requirements |
| In: ACM CHI Workshop on Human-Computer Interaction and Security Systems (HCISEC). | |
| Erbacher, RF (2002). | Glyph-Based Generic Network Visualization |
| In: Proceedings of the SPIE ’2002 Conference on Visualization and Data Analysis, pages 228-237. | |
| Erbacher, RF, Teng, Z, and Pandit, S (2002). | Multi-Node Monitoring and Intrusion Detection |
| In: Proceedings of the IASTED International Conference on Visualization, Imaging, and Image Processing, pages 720-725. | |
| Erbacher, RF, Walker, KL, and Frincke, DA (2002). | Intrusion and Misuse Detection in Large-Scale Systems |
| IEEE Computer Graphics and Applications 22(1):38-48. | |
| Teoh, ST, Ma, K, Wu, SF, and Zhao, X (2002). | Case study: Interactive visualization for Internet security |
| In: Proceedings of IEEE Visualization, pages 505-508. | |
| D’Amico, A and Larkin, M (2001). | Methods of Visualizing Temporal Patterns in and Mission Impact of Computer Security Breaches |
| In: DARPA Information Survivability Conference and Exposition (DISCEX II), pages 343-354. | |
| Girardin, L (1999). | An Eye on Network Intruder-Administrator Shootouts |
| In: Workshop on Intrusion Detection and Network Monitoring (ID’99). USENIX Association, pages 19-28. | |
| Girardin, L and Brodbeck, D (1998). | A Visual Approach for Monitoring Logs |
| In: Proceedings of Twelfth Systems Administration Conference (LISA ’98), pages 299-308. | |
