作者：Raffael Marty
出版日期：August 11, 2008
出版社：Addison Wesley
页数：552
ISBN：ISBN-10: 0321510100 ISBN-13: 978-0321510105
文件格式：PDF

Product Description
APPLIED SECURITY VISUALIZATION

“Collecting log data is one thing, havingrelevant information is something else. The art to transform all kindsof log data into meaningful security information is the core of thisbook. Raffy illustrates in a straight forward way, and with hands-onexamples, how such a challenge can be mastered. Let’s get inspired.”
–Andreas Wuchner, Head of Global IT Security, Novartis

Use Visualization to Secure Your Network Against the Toughest, Best-Hidden Threats

As networks become ever more complex,securing them becomes more and more difficult. The solution isvisualization. Using today’s state-of-the-art data visualizationtechniques, you can gain a far deeper understanding of what’s happeningon your network right now. You can uncover hidden patterns of data,identify emerging vulnerabilities and attacks, and respond decisivelywith countermeasures that are far more likely to succeed thanconventional methods.

In Applied Security Visualization,leading network security visualization expert Raffael Marty introducesall the concepts, techniques, and tools you need to use visualizationon your network. You’ll learn how to identify and utilize the rightdata sources, then transform your data into visuals that reveal whatyou really need to know. Next, Marty shows how to use visualization toperform broad network security analyses, assess specific threats, andeven improve business compliance.

He concludes with an introduction to abroad set of visualization tools. The book’s CD also includes DAVIX, acompilation of freely available tools for security visualization.

You’ll learn how to:
• Intimately understand the data sources that are essential for effective visualization
• Choose the most appropriate graphs and techniques for your IT data
• Transform complex data into crystal-clear visual representations
• Iterate your graphs to deliver even better insight for taking action
• Assess threats to your network perimeter, as well as threats imposed by insiders
• Use visualization to manage risks and compliance mandates more successfully
• Visually audit both the technical and organizational aspects of information and network security
• Compare and master today’s most useful tools for security visualization

Contains the live CD Data Analysis andVisualization Linux (DAVIX). DAVIX is a compilation of powerful toolsfor visualizing networks and assessing their security. DAVIX runsdirectly from the CD-ROM, without installation.

Raffael Marty is chiefsecurity strategist and senior product manager for Splunk, the leadingprovider of large-scale, high-speed indexing and search technology forIT infrastructures. As customer advocate and guardian, he focuses onusing his skills in data visualization, log management, intrusiondetection, and compliance. An active participant on industry standardscommittees such as CEE (Common Event Expression) and OVAL (OpenVulnerability and Assessment Language), Marty created the Thor andAfterGlow automation tools, and founded the security visualizationportal secviz.org. Before joining Splunk, he managed the solutions teamat ArcSight, served as IT security consultant forPriceWaterhouseCoopers, and was a member of the IBM Research GlobalSecurity Analysis Lab.

About the Author
Raffael Marty is ChiefSecurity Strategist and Senior Product Manager for Splunk, the leadingprovider of large-scale, high-speed indexing and search technology forIT infrastructures. As customer advocate and guardian, he focuses onusing his skills in data visualization, log management, intrusiondetection, and compliance. An active participant on industry standardscommittees such as CEE (Common Event Expression) and OVAL (OpenVulnerability and Assessment Language),Marty created the Thor andAfterGlow automation tools and founded the security visualizationportal secviz.org. Raffy’s passion for security visualization isevident in the many presentations he gives at conferences around theworld. Prior to writing Applied Security Visualization, hecontributed to a number of books on security and visualization. Beforejoining Splunk, Raffy managed the solutions team at ArcSight, served asIT security consultant for PriceWaterhouseCoopers, and was a member ofthe IBM Research Global Security Analysis Lab.