Visual clustering of spam emails for DDoS analysis

Huang, ML; Zhang, J; Nguyen, QV; Wang, J

Visual clustering of spam emails for DDoS analysis

Huang, ML

Zhang, J

Nguyen, QV Wang, J

Permalink

Publication Type:: Conference Proceeding
Citation:: Proceedings of the International Conference on Information Visualisation, 2011, pp. 65 - 72
Issue Date:: 2011-09-26

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Adobe PDF

Download full textAdobe PDF (1.55 MB)

View on publisher's site

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Huang, ML https://orcid.org/0000-0002-6896-6480	en_US
dc.contributor.author	Zhang, J https://orcid.org/0000-0001-6580-1683	en_US
dc.contributor.author	Nguyen, QV	en_US
dc.contributor.author	Wang, J	en_US
dc.date.issued	2011-09-26	en_US
dc.identifier.citation	Proceedings of the International Conference on Information Visualisation, 2011, pp. 65 - 72	en_US
dc.identifier.isbn	9780769544762	en_US
dc.identifier.issn	1093-9547	en_US
dc.identifier.uri	http://hdl.handle.net/10453/19111
dc.description.abstract	Networking attacks embedded in spam emails are increasingly becoming numerous and sophisticated in nature. Hence this has given a growing need for spam email analysis to identify these attacks. The use of these intrusion detection systems has given rise to other two issues, 1) the presentation and understanding of large amounts of spam emails, 2) the user-assisted input and quantified adjustment during the analysis process. In this paper we introduce a new analytical model that uses two coefficient vectors: 'density' and 'weight'for the analysis of spam email viruses and attacks. We then use a visual clustering method to classify and display the spam emails. The visualization allows users to interactively select and scale down the scope of views for better understanding of different types of the spam email attacks. The experiment shows that this new model with the clustering visualization can be effectively used for network security analysis. © 2011 IEEE.	en_US
dc.relation.ispartof	Proceedings of the International Conference on Information Visualisation	en_US
dc.relation.isbasedon	10.1109/IV.2011.41	en_US
dc.title	Visual clustering of spam emails for DDoS analysis	en_US
dc.type	Conference Proceeding
utslib.for	0806 Information Systems	en_US
dc.location.activity	London, United Kingdom	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/DVC (Research)
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
pubs.organisational-group	/University of Technology Sydney/Strength - INEXT - Innovation in IT Services and Applications
utslib.copyright.status	open_access
pubs.publication-status	Published	en_US

Abstract:

Networking attacks embedded in spam emails are increasingly becoming numerous and sophisticated in nature. Hence this has given a growing need for spam email analysis to identify these attacks. The use of these intrusion detection systems has given rise to other two issues, 1) the presentation and understanding of large amounts of spam emails, 2) the user-assisted input and quantified adjustment during the analysis process. In this paper we introduce a new analytical model that uses two coefficient vectors: 'density' and 'weight'for the analysis of spam email viruses and attacks. We then use a visual clustering method to classify and display the spam emails. The visualization allows users to interactively select and scale down the scope of views for better understanding of different types of the spam email attacks. The experiment shows that this new model with the clustering visualization can be effectively used for network security analysis. © 2011 IEEE.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/19111