Sonification of network traffic flow for monitoring and situational awareness.
Mohamed Debashi,Paul Vickers +1 more
Reads0
Chats0
TLDR
SoNSTAR (Sonification of Networks for SiTuational AwaReness), a real-time sonification system for monitoring computer networks to support network administrators’ situational awareness, is presented.Abstract:
Maintaining situational awareness of what is happening within a computer network is challenging, not only because the behaviour happens within machines, but also because data traffic speeds and volumes are beyond human ability to process. Visualisation techniques are widely used to present information about network traffic dynamics. Although they provide operators with an overall view and specific information about particular traffic or attacks on the network, they often still fail to represent the events in an understandable way. Also, because they require visual attention they are not well suited to continuous monitoring scenarios in which network administrators must carry out other tasks. Here we present SoNSTAR (Sonification of Networks for SiTuational AwaReness), a real-time sonification system for monitoring computer networks to support network administrators’ situational awareness. SoNSTAR provides an auditory representation of all the TCP/IP traffic within a network based on the different traffic flows between between network hosts. A user study showed that SoNSTAR raises situational awareness levels by enabling operators to understand network behaviour and with the benefit of lower workload demands (as measured by the NASA TLX method) than visual techniques. SoNSTAR identifies network traffic features by inspecting the status flags of TCP/IP packet headers. Combinations of these features define particular traffic events which are mapped to recorded sounds to generate a soundscape that represents the real-time status of the network traffic environment. The sequence, timing, and loudness of the different sounds allow the network to be monitored and anomalous behaviour to be detected without the need to continuously watch a monitor screen.read more
Citations
More filters
Proceedings ArticleDOI
Quality of Service for Traffic Monitoring System based on Static Routing using EoIP Tunnel over IPSec
Ida Nurhaida,Ngadiyono +1 more
TL;DR: The aim of this research is to create private network connection by ensuring its security and distributing public address through routing static algorithm and Network Development Life Cycle (NDLC) is utilized as the research method.
Journal ArticleDOI
Sonification of Network Traffic for Detecting and Learning About Botnet Behavior
Mohamed Debashi,Paul Vickers +1 more
TL;DR: A sonification technique using the SoNSTAR system is shown that maps characteristics of network traffic to a real-time soundscape enabling an operator to hear and detect botnet activity.
Journal ArticleDOI
A design-driven sonification process for supporting expert users in real-time anomaly detection: Towards applied guidelines
TL;DR: An ongoing investigation into the use of sound for real-time monitoring of anomalous behaviour in digital and digital/physical systems is presented and design guidelines are defined to support authors in the process of creating sonifications that are both efficient and engaging.
Journal ArticleDOI
Hearing attacks in network data: An effectiveness study
TL;DR: The results show that by listening to the sonified network data, participants could detect attacks accurately and efficiently, including combinations of attacks, and identify the types of attacks.
Proceedings ArticleDOI
Surfing In Sound: Sonification of Hidden Web Tracking
TL;DR: A sonification-based approach to raise user awareness by conveying information on web tracking through sound through sound while the user is browsing the web, and adds the capability to monitor any network connection, including all browsers, applications and devices.
References
More filters
Book ChapterDOI
Development of NASA-TLX (Task Load Index): Results of Empirical and Theoretical Research
TL;DR: In this article, the results of a multi-year research program to identify the factors associated with variations in subjective workload within and between different types of tasks are reviewed, including task-, behavior-, and subject-related correlates of subjective workload experiences.
Journal ArticleDOI
Toward a Theory of Situation Awareness in Dynamic Systems
TL;DR: A theoretical model of situation awareness based on its role in dynamic human decision making in a variety of domains is presented and design implications for enhancing operator situation awareness and future directions for situation awareness research are explored.
Reference BookDOI
Encyclopedia of Database Systems
Ling Liu,M. Tamer Zsu +1 more
TL;DR: This comprehensive reference contains 1,300 illustrated entries, organized alphabetically, providing easy access to important concepts relevant information on all aspects of very large databases, data management, and database systems, including areas of current interest and research results of historical significance.
Proceedings ArticleDOI
A signal analysis of network traffic anomalies
TL;DR: This paper reports results of signal analysis of four classes of network traffic anomalies: outages, flash crowds, attacks and measurement failures, and shows that wavelet filters are quite effective at exposing the details of both ambient and anomalous traffic.
Related Papers (5)
A Formalised Approach to Designing Sonification Systems for Network−Security Monitoring
Louise Axon,Jason R. C. Nurse +1 more