Picviz: Finding a Needle in a Haystack

  title={Picviz: Finding a Needle in a Haystack},
  author={S{\'e}bastien Tricaud},
When considering log files for security, usual applications available today either look for patterns using signature databases or use a behavioral approach. In both cases, information can be missed. The problem becomes bigger with systems receiving a massive amount of logs. Parallel coordinates is an answer to display an infinity of events in multiple dimensions. As security data are multivariate, parallel coordinates provides a neat way to display and ease abnormal behaviors detection. Picviz… CONTINUE READING
Highly Cited
This paper has 17 citations. REVIEW CITATIONS