FloCon 2011 Collection
These presentations and resource documents were provided at FloCon 2011, an open conference that provides operational network analysts, tool developers, and researchers a forum to discuss the analysis of large volumes of traffic to showcase the next generation of flow-based analysis techniques.
At FloCon 2011, participants focused on learning about their networks and confirming what we know about them. Participants explored a wide range of topics and discussed dark space, how many web servers you're actually operating, spam, and DNS servers and their susceptibility to cache poisoning.
Entropy-Based Measurement of IP Address Inflation in the Waledac Botnet
By Rhiannon Weaver, Chris Nunnery (University of North Carolina), Gautam Singaraju (University of North Carolina)
In this presentation, the authors discuss a new method for measuring the discrepancy between counting IP addresses and counting individual machines in a botnet.Learn More
Exploring the Interactions Between Network Data Analysis and Security Information/Event Management
In this presentation, Timothy Shimeall explores the interaction of data analysis and security event management and new approaches to be explored.Learn More
Flows as a Topology Chart
By Hiroshi Asakura (NTT Corporation), Kensuke Nakata (NTT Corporation), Shingo Kashima (NTT Corporation), Hiroshi Kurakami (NTT Corporation)
In this presentation, NTT Corporation staff cover the challenges of visualizing both the inside and outside of your network using topology flow charts.Learn More
This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.