icon-carat-right menu search cmu-wordmark

Situational Awareness Metrics from Flow and Other Data Sources

Presentation
In this presentation, Soumyo Moitra describes the need for a more flexible set of metrics for establishing network situational awareness.
Publisher

Software Engineering Institute

Abstract

Summary and Conclusions:

  • Summary
    • Set of SA metrics: Threats-Risk-Impact
    • Properties and interpretations of the metrics.
    • Flow data and additional data (as identified).
    • Benefits from applying these metrics.
  • Key Challenges
    • A processing and analysis layer between queries and reporting.
    • Data availability.
    • Problems with the numbers (NATs, Prozies, inconsistencies, etc.)
  • Future Work in Brief
    • Develop, validate, and interpret these metrics.
    • Collect the needed data systematically.
    • Include the intermediate analytics capabilities.
Part of a Collection

FloCon 2013 Collection

This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.