The TREsPASS project is an EU funded project aimed at reducing security incidents by integrating European expertise on socio-technical security into a widely applicable and standardized framework. As a member of the TREsPASS consortium, LUST was responsible for all visualization and graphic design work of the project. This included modeling and visualization of complex security data.
By integrating European expertise on socio-technical security into a widely applicable and standarized framework, TREsPASS will reduce security incidents in Europe, and allow organizations and their customers to make informed decisions about security investments. This increased resilience of European businesses both large and small is vital to safeguarding the social and economic prospects of Europe.
LUST worked on several different visualizations for attack tree visualization, attacker profile visualization, and general approaches to modeling extensive security datasets. The bulk of the work is summarized in a paper published in Springer LNCS and a more general overview can be found in this slide deck presented at GraMSec 2016.
I worked on several parts of the visualizations including the Attack Cloud, a novel method of displaying information in an attack tree, and Attack Navigator Map Analysis Tools, as well as novel visualizations for attacker profiles and the Verizon DBIR.
- TREsPASS Visualization Index
- From A to Z: Developing a Visual Vocabulary for Information Security Threat Visualisation (Springer)
- From A to Z: Developing a Visual Vocabulary for Information Security Threat Visualisation (Paper)
- GraMSec 2016 Presentation
- Attack Cloud Random Visualization
- Attack Cloud with Real Data
- Attack Navigator Visualization
- Attacker Profile Visualization Image
Attack Cloud Visualization Demo
Attack Cloud Visualization