A Survey of Visualization Systems for Malware Analysis: Difference between revisions
(create with basic meta data) |
(links) |
||
| Line 1: | Line 1: | ||
= A Survey of Visualization Systems for Malware Analysis = | = A Survey of Visualization Systems for Malware Analysis = | ||
* Authors: Wagner, Markus; Fischer, Fabian; Luh, Robert; Haberson, Andrea; Rind, Alexander; Keim, Daniel | * Authors: Wagner, Markus; Fischer, Fabian; Luh, Robert; Haberson, Andrea; Rind, Alexander; [[Keim, Daniel]]; [[Aigner, Wolfgang]] | ||
* Venue: Eurographics Conference on Visualization (EuroVis) - STARs | * Venue: Eurographics Conference on Visualization (EuroVis) - STARs | ||
* Date: 2015 | * Date: 2015 | ||
| Line 8: | Line 8: | ||
=== Abstract === | === Abstract === | ||
Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community. | Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community. | ||
=== Links === | |||
* [http://dx.doi.org/10.2312/eurovisstar.20151114 Definite version at EuroGraphics digital library] | |||
* [http://mc.fhstp.ac.at/sites/default/files/publications/wagner_2015_eurovis_star_malwarevis_postprint_reduced.pdf Postprint (hosted at FH St. Pölten)] | |||
* [http://mc.fhstp.ac.at/supp/EuroVisStar2015 Additional material (hosted at FH St. Pölten)] | |||
* [http://malware.dbvis.de/ Interactive browser] | |||
[[Category:Surveys]] | [[Category:Surveys]] | ||
Revision as of 14:39, 24 March 2017
A Survey of Visualization Systems for Malware Analysis
- Authors: Wagner, Markus; Fischer, Fabian; Luh, Robert; Haberson, Andrea; Rind, Alexander; Keim, Daniel; Aigner, Wolfgang
- Venue: Eurographics Conference on Visualization (EuroVis) - STARs
- Date: 2015
- DOI: 10.2312/eurovisstar.20151114
Abstract
Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community.