Enavis: Enterprise network activities visualization

Qi Liao, Andrew Blaich, Aaron Striegel, Douglas Thain

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

12 Scopus citations

Abstract

With the prevalence of multi-user environments, it has become an increasingly challenging task to precisely identify who is doing what on an enterprise network. Current management systems that rely on inferring user identity and application usage via log files from routers and switches are not capable of accurately reporting and managing a large-scale network due to the coarseness of the collected data. We propose a system that utilizes finer-grained data in the form of local context, i.e., the precise user and application associated with a network connection. Through the use of dynamic correlation and graph modeling, we developed a visualization tool called ENAVis (Enterprise Network Activities Visualization). ENAVis aids a real-world administrator in allowing them to more efficiently manage and gain insight about the connectivity between hosts, users, and applications that is otherwise obfuscated, lost or not collected in systems currently deployed in an enterprise setting.

Original languageEnglish
Title of host publicationProceedings of the 22nd Large Installation System Administration Conference, LISA 2008
PublisherUSENIX Association
Pages59-74
Number of pages16
ISBN (Electronic)9781931971638
StatePublished - 2008
Event22nd Large Installation System Administration Conference, LISA 2008 - San Diego, United States
Duration: Nov 9 2008Nov 14 2008

Publication series

NameProceedings of the 22nd Large Installation System Administration Conference, LISA 2008

Conference

Conference22nd Large Installation System Administration Conference, LISA 2008
Country/TerritoryUnited States
CitySan Diego
Period11/9/0811/14/08

Fingerprint

Dive into the research topics of 'Enavis: Enterprise network activities visualization'. Together they form a unique fingerprint.

Cite this