Visualizing attack graphs, reachability, and trust relationships with NAVIGATOR

Authors:
Matthew Chu;Kyle Ingols;Richard Lippmann;Seth Webster;Stephen Boyer
Affiliations:
MIT Lincoln Laboratory, Lexington, MA;MIT Lincoln Laboratory, Lexington, MA;MIT Lincoln Laboratory, Lexington, MA;MIT Lincoln Laboratory, Lexington, MA;MIT Lincoln Laboratory, Lexington, MA
Venue:
Proceedings of the Seventh International Symposium on Visualization for Cyber Security
Year:
2010

Citing 10
Cited 2

Ordered and quantum treemaps: Making effective use of 2D space to display hierarchies

ACM Transactions on Graphics (TOG)
Flow Map Layout

INFOVIS '05 Proceedings of the Proceedings of the 2005 IEEE Symposium on Information Visualization
Hierarchical Edge Bundles: Visualization of Adjacency Relations in Hierarchical Data

IEEE Transactions on Visualization and Computer Graphics
Practical Attack Graph Generation for Network Defense

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
GARNET: A Graphical Attack Graph and Reachability Network Evaluation Tool

VizSec '08 Proceedings of the 5th international workshop on Visualization for Computer Security
A Graph-Theoretic Visualization Approach to Network Risk Analysis

VizSec '08 Proceedings of the 5th international workshop on Visualization for Computer Security
Improving Attack Graph Visualization through Data Reduction and Attack Grouping

VizSec '08 Proceedings of the 5th international workshop on Visualization for Computer Security
FloVis: Flow Visualization System

CATCH '09 Proceedings of the 2009 Cybersecurity Applications & Technology Conference for Homeland Security
Modeling Modern Network Attacks and Countermeasures Using Attack Graphs

ACSAC '09 Proceedings of the 2009 Annual Computer Security Applications Conference
Validating and restoring defense in depth using attack graphs

MILCOM'06 Proceedings of the 2006 IEEE conference on Military communications

Visual analysis of goal-directed network defense decisions

Proceedings of the 8th International Symposium on Visualization for Cyber Security
NV: Nessus vulnerability visualization for the web

Proceedings of the Ninth International Symposium on Visualization for Cyber Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

A new tool named NAVIGATOR (Network Asset VIsualization: Graphs, ATtacks, Operational Recommendations) adds significant capabilities to earlier work in attack graph visualization. Using NAVIGATOR, users can visualize the effect of server-side, client-side, credential-based, and trust-based attacks. By varying the attacker model, NAVIGATOR can show the current state of the network as well as hypothetical future situations, allowing for advance planning. Furthermore, NAVIGATOR explicitly shows network topology, infrastructure devices, and host-level data while still conveying situational awareness of the network as a whole. This tool is implemented in Java and uses an existing C++ engine for reachability and attack graph calculations.