Wireless Sensor Network Security Visualization

VisIoT: 1, 2 . 2

1 , , ,

2 (....) , , ,

Technology Forum,

1

VisIoT: IoT VisIoT VisIoTDemo Technology Forum 2016, 18

+

2

(Internet of Things - IoT): . . , , , ... Disruptive Civil Technologies with potential impacts on US national power.by 2025 Internet nodes may reside in everyday things food packages, furniture, paper documents, and more [1].Technology Forum 2016, 18 [1] National Intelligence Council, Disruptive Civil Technologies Technologies with Potential Impacts on US Interests Out to 2025, Conference Report CR 2008-07, April 2008

+

3

: .: / .to the extent that everyday objects become information security risks, the IoT could distribute those risks far more widely than the Internet has to date [2]. , , . (Wireless Sensor Networks - WSNs) , .Technology Forum 2016, 18 [2] L. Atzori, A. Iera, and G. Morabito. "The internet of things: A survey." Computer networks, vol. 54, no. 15, pp. 2787-2805, 2010.

+

4

. ( ) . // . . ( ).Technology Forum 2016, 18

+

5

IoT WSNs

,

Technology Forum 2016, 18

+

6

WSNs :

Hello Flood Attack Denial-of-Service (DoS) attack Selective Forwarding & Black hole attacks Sinkhole attacks Wormhole attacks Sybil attacks &

Technology Forum 2016, 18

+

7

(reasoning ability) , (false positives). , : , -. : (Visualization) (Data Mining) (Visual Analytics) .

Technology Forum 2016, 18

+

8

Firewall / VisualizationTechnology Forum 2016, 18

+

9

3 Ws

WHAT: ?WHEN: ?WHICH: ?Technology Forum 2016, 18

+

10

VisIoT: 3 Ws

WHEN?WHAT?

WHICH?Technology Forum 2016, 18

+

11

VisIoT VisIoT : . (cognitive) . VisIoT : (Anomaly Detection Engine - ADE) (Visualization Engine - VIS) ADE , VIS , .Technology Forum 2016, 18

+

12

ADE

ADE (routing dynamics) . 4 .Technology Forum, { 1. Anchor Phase }Initialize the following lists; inl, anl, and cnlfor each routing setup informationcoming from node i in the network doupdate the inllist with the followingdata ropt, nopt associated with node iend for

{ 2. Monitoring Phase }for each routing update coming from node i in the network doupdate the routing cost, rnew of node iend for{ 3. Detection Phase }if rnew