Stakeholder Specific Visualization and Automated Reporting of Network Scanning Results applying Vis4Sec
ISSN der Zeitschrift
11. DFN-Forum Kommunikationstechnologien
Gesellschaft für Informatik e.V.
This article introduces a process framework - Visualization for Security (Vis4Sec) - that supports the generation of organizational security knowledge and awareness. Vis4Sec is used to generate stakeholder speciĄc visualizations based on the results of regular performed network scans in a complex IT infrastructure. The process steps Ask, Prepare Data, Visualize and Interact assist to deĄne security relevant questions, prepare a data-driven visualization, embed it into an organizational context and distribute it. A proof of concept implementation was successfully done in a network environment operated by a Higher Educational Institution data center. Scan data resulting from several e. g. Network Mapper (nmap) based scanner machines has been aggregated and analyzed