Visualization design for immediate high-level situational assessment

  • Authors:
  • Robert F. Erbacher

  • Affiliations:
  • U.S. Army Research Laboratory, Adelphi, MD

  • Venue:
  • Proceedings of the Ninth International Symposium on Visualization for Cyber Security
  • Year:
  • 2012

Quantified Score

Hi-index 0.00

Visualization

Abstract

We present the design of a visualization technique based on the results of a human in the loop process, which relied on network managers and network analysts. This visualization design was directly targeted at supporting tasks identified by the domain experts. This was the need for the ability to provide rapid and immediate assessment of the state of the network and associated hosts. This visualization technique, the Cyber Command Gauge Cluster (CCGC), allows analysts to review the state of the network and locate potentially problematic anomalies, drill down into those anomalies, and prioritize the anomalies for detailed analysis and remediation. By providing a summary representation combined with independent representations of critical parameters, the technique is unique in its ability to aid decision makers in making rapid assessments and prioritization of identified anomalies. While the prototype focuses on network analysis, the technique is devised to provide generalized support for situational awareness in any domain. The generalized parameter mapping allows the technique to be applicable to any level of decision making, from the front-line network analyst to the CIO.