Picviz: Finding a Needle in a Haystack

@inproceedings{Tricaud2008PicvizFA,
  title={Picviz: Finding a Needle in a Haystack},
  author={S{\'e}bastien Tricaud},
  booktitle={WASL},
  year={2008}
}
When considering log files for security, usual applications available today either look for patterns using signature databases or use a behavioral approach. In both cases, information can be missed. The problem becomes bigger with systems receiving a massive amount of logs. Parallel coordinates is an answer to display an infinity of events in multiple dimensions. As security data are multivariate, parallel coordinates provides a neat way to display and ease abnormal behaviors detection. Picviz… CONTINUE READING
Highly Cited
This paper has 17 citations. REVIEW CITATIONS