Visual analytics for BGP monitoring and prefix hijacking identification

Biersack, Ernst W.; Jacquemart, Quentin; Fischer, Fabian; Fuchs, Johannes; Thonnard, Olivier; Theodoridis, Georgios; Tzovaras, Dimitrios; Vervier, Pierre-Antoine

doi:10.1109/mnet.2012.6375891

Cited by 20 publications

(9 citation statements)

References 12 publications

(12 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additionally, they provide an overall domain characterization including challenges, data sources and users. [14,41,50,64,71,73,80], that not only considers the visualization techniques employed, but also lower-level visualization features, interaction methods, and use cases [5]. Additionally, they distinguish between BGP visualizations that are high-level, or overview, lower-level, or local view, and multi-view.…”

Section: Related Surveys and Motivationmentioning

confidence: 99%

“…Finally, Youn et al presented a study on BGP visualization tools focused on cyber situational awareness [82]. Their survey canvassed 10 tools, seven of which appear in our study: [5,9,64,67,68,73,76], and give more specifics on the visualization techniques employed, core functions, level of detail and use cases. However, they do not consider the specific attacks used to validate the tools or attempt to map the visualization techniques to the attack types.…”

Section: Related Surveys and Motivationmentioning

confidence: 99%

See 1 more Smart Citation

The State of the Art in BGP Visualization Tools: A Mapping of Visualization Techniques to Cyberattack Types

Raynor

Crnovrsanin

Bartolomeo

et al. 2022

IEEE Trans. Visual. Comput. Graphics

View full text Add to dashboard Cite

show abstract

Section: Related Surveys and Motivationmentioning

confidence: 99%

Section: Related Surveys and Motivationmentioning

confidence: 99%

The State of the Art in BGP Visualization Tools: A Mapping of Visualization Techniques to Cyberattack Types

Raynor

Crnovrsanin

Bartolomeo

et al. 2022

IEEE Trans. Visual. Comput. Graphics

View full text Add to dashboard Cite

show abstract

“…This tool highlights aspects of BGP data that have received less attention in previous visualization applications to help form a complete picture of an important part of the Internet communications infrastructure. Ernst Biersack et al(2012) [9] proposed the VIS-SENSE model for analysts to detect abnormal routing patterns in vast amounts of BGP data through network visualization. We emphasized how to visualize BGP monitoring to identify prefix hijacking attacks through malicious intent.…”

Section: Related Work 21 Cyber Situation Awareness (Cyber Sa) Overviewsmentioning

confidence: 99%

Research on Cyber IPB Visualization Method based on BGP Archive Data for Cyber Situation Awareness

2021

KSII TIIS

View full text Add to dashboard Cite

Cyber powers around the world are conducting cyber information-gathering activities in cyberspace, a global domain within the Internet-based information environment. Accordingly, it is imperative to obtain the latest information through the cyber intelligence preparation of the battlefield (IPB) process to prepare for future cyber operations. Research utilizing the cyber battlefield visualization method for effective cyber IPB and situation awareness aims to minimize uncertainty in the cyber battlefield and enable command control and determination by commanders. This paper designed architecture by classifying cyberspace into a physical, logical network layer and cyber persona layer to visualize the cyber battlefield using BGP archive data, which is comprised of BGP connection information data of routers around the world. To implement the architecture, BGP archive data was analyzed and pre-processed, and cyberspace was implemented in the form of a Di-Graph. Information products that can be obtained through visualization were classified for each layer of the cyberspace, and a visualization method was proposed for performing cyber IPB. Through this, we analyzed actual North Korea's BGP and OSINT data to implement North Korea's cyber battlefield centered on the Internet network in the form of a prototype. In the future, we will implement a prototype architecture based on Elastic Stack.

show abstract

“…Management of worldwide Internet traffic is administered by tens of thousands of independent routing domain systems called autonomous systems (AS) (Biersack et al, 2012). An AS can be owned by network operators such as Internet Service Providers (ISPs).…”

Section: Border Gateway Protocolmentioning

confidence: 99%

Combining Exploratory Analysis and Automated Analysis for Anomaly Detection in Real-Time Data Streams

Shah¹,

Abualhaol

Gad³

et al. 2017

Technology Innovation Management Review

View full text Add to dashboard Cite

Visual analytics for BGP monitoring and prefix hijacking identification

Cited by 20 publications

References 12 publications

The State of the Art in BGP Visualization Tools: A Mapping of Visualization Techniques to Cyberattack Types

The State of the Art in BGP Visualization Tools: A Mapping of Visualization Techniques to Cyberattack Types

Research on Cyber IPB Visualization Method based on BGP Archive Data for Cyber Situation Awareness

Combining Exploratory Analysis and Automated Analysis for Anomaly Detection in Real-Time Data Streams

Contact Info

Product

Resources

About