Situational Awareness Metrics from Flow and Other Data Sources
• Presentation
In this presentation, Soumyo Moitra describes the need for a more flexible set of metrics for establishing network situational awareness.
Publisher
Software Engineering Institute
Topic or Tag
Abstract
Summary and Conclusions:
- Summary
- Set of SA metrics: Threats-Risk-Impact
- Properties and interpretations of the metrics.
- Flow data and additional data (as identified).
- Benefits from applying these metrics.
- Key Challenges
- A processing and analysis layer between queries and reporting.
- Data availability.
- Problems with the numbers (NATs, Prozies, inconsistencies, etc.)
- Future Work in Brief
- Develop, validate, and interpret these metrics.
- Collect the needed data systematically.
- Include the intermediate analytics capabilities.
Part of a Collection
FloCon 2013 Collection
This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.