Difference between revisions of "The Defenders: Proposal Version 1"

From Visual Analytics for Business Intelligence
Jump to navigation Jump to search
 
(4 intermediate revisions by 2 users not shown)
Line 2: Line 2:
 
{| style="background-color:white; color:white padding: 5px 0 0 0;" width="100%" height=50px cellspacing="0" cellpadding="0" valign="top" border="0" |
 
{| style="background-color:white; color:white padding: 5px 0 0 0;" width="100%" height=50px cellspacing="0" cellpadding="0" valign="top" border="0" |
  
| style="background:#ffe4b5;vertical-align:top;width:16%;" | <div style="padding: 3px; font-weight: bold; text-align:center; line-height: wrap_content; font-size:16px; solid #ffe4b5; background #ffe4b5; border-bottom:1px solid #ffe4b5; border-top:1px solid #ffe4b5; font-family:helvetica"> [[The Defenders: Proposal Version 1 | <b>Proposal</b>]]
+
| style="background:#ffe4b5;vertical-align:top;width:16%;" | <div style="padding: 3px; font-weight: bold; text-align:center; line-height: wrap_content; font-size:16px; solid #ffe4b5; background #ffe4b5; border-bottom:1px solid #ffe4b5; border-top:1px solid #ffe4b5; font-family:helvetica"> [[The Defenders: Proposal | <b>Proposal</b>]]
  
 
| style="background:#ffe4b5;vertical-align:top;width:16%;" | <div style="padding: 3px; font-weight: bold; text-align:center; line-height: wrap_content; font-size:16px; solid #ffe4b5; background #ffe4b5; border-bottom:1px solid #ffe4b5; border-top:1px solid #ffe4b5; font-family:helvetica"> [[The Defenders: Poster | <b>Poster</b>]]
 
| style="background:#ffe4b5;vertical-align:top;width:16%;" | <div style="padding: 3px; font-weight: bold; text-align:center; line-height: wrap_content; font-size:16px; solid #ffe4b5; background #ffe4b5; border-bottom:1px solid #ffe4b5; border-top:1px solid #ffe4b5; font-family:helvetica"> [[The Defenders: Poster | <b>Poster</b>]]
Line 12: Line 12:
 
<div style="margin-top:10px">
 
<div style="margin-top:10px">
  
[[File:Motivation intro.png|1000px|center]]
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">INTRODUCTION</font></div>
 +
<br/>
 +
The internet has become an indispensable tool in today’s business world. While it has fostered a tremendous amount of economic growth, it also introduced a series of profound vulnerabilities with a multitude of impacts: socially, economically and/or invading the privacy of an individual or organizations. In 2017, attacks can total up to $600 billion dollars, this alarming number has caught the world’s attention. It is believed that attackers will become increasingly creative with attack methods and increasingly destructive payloads that better target system vulnerabilities, with the luxury of anonymity and time.
 +
<br/>
  
 +
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">MOTIVATION</font></div>
 +
<br/>
 +
Cyber-attacks have made its way up to being one of the top 5 risk to global stability, amongst natural disasters, extreme weather, data fraud, and failure to address climate change. “Another growing trend is the use of cyberattacks to target critical infrastructure and strategic industrial sectors, raising fears that, in a worst-case scenario, attackers could trigger a breakdown in the systems that keep societies functioning. Over the years, there has been a shift from profit-motivated attacks to ones that aim to cause massive disruptions, such as the WannaCry ransomware campaign. Not knowing why or when attacks will strike, countries are left unprotected and unprepared.
  
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#FF0090 face="Helvetica">SELECTED DATASET</font></div>
+
<br/>
 +
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">GOALS AND OBJECTIVES</font></div>
 +
<br/>
 +
* Understand and analyse the distribution of the Types, Sources and Impact of Breaches globally
 +
*Understand the relationship between who's the culprit(source) and why did he do it(type)
 +
* Compare the nature and impact of instances of reported breaches between countries
 +
* Compare breaches between countries over time
 +
 
 +
 
 +
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">SELECTED DATASET</font></div>
  
  
Line 63: Line 78:
  
 
  </p>
 
  </p>
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#FF0090 face="Helvetica">BACKGROUND SURVEY OF RELATED WORKS</font></div>
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">BACKGROUND SURVEY OF RELATED WORKS</font></div>
 
 
  
[[File:Related.png|1000px|center]]
+
[[File:7E0018ED-6DDB-4282-AFB6-1FFBEF6B8901.jpg|1000px|center]]
  
 +
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#27408B" face="Helvetica">STORYBOARD</font></div>
  
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#FF0090" face="Helvetica">SKETCHES STORYBOARD</font></div>
 
 
{| class="wikitable" style="background-color:#FFFFFF;" width="100%"
 
{| class="wikitable" style="background-color:#FFFFFF;" width="100%"
 
! style="width:50%" | Sketches
 
! style="width:50%" | Sketches
! How Analyst Can Conduct Analysis
+
! Description
 +
<b> </b>
 +
(Possible users: Security management personnel from multinational corporations or governmental organization, who wishes to examine if their current effort and resources devoted to preventing cyber attacks are justified and effective as compared to other organizations of similar characteristics.) 
 +
 
 
|-
 
|-
 +
 
| style="text-align: center;" | <b>  </b>
 
| style="text-align: center;" | <b>  </b>
[[File:Parallel Coordinates.png|center|300px]]
+
[[File:Heatmap.JPG|center|300px]]
 
<b> </b>
 
<b> </b>
  
Line 81: Line 99:
 
<h3>Breach Overview</h3>
 
<h3>Breach Overview</h3>
  
Consists of an interactive parallel coordinate chart. This visualisation is linked by setting the time period for the data observed through an interactive timeframe.
+
'''Calendar Heatmap'''
  
'''Parallel Coordinates'''
+
To display time series data of the security breaches over the years, through a calendar heat map, by their respective industries. This way we can observe any spikes or anomalies within the same time period, across the different industries and take possible precautions for the future. Wouldn't it be interesting if we are able to spot correlations between the intended industry and the time of attack?
  
The parallel coordinates show the distribution of each feature amongst the different countries. The use of brushing is to highlight the selected country/countries in relation to the rest of the countries.
+
'''Technique: Filter'''
 +
Choose from dropdown box according to the industry to be visualised.  
  
'''Dynamic Timeframe'''
+
'''Technique: Tooltip'''
 +
Mouse over to observe the details of the day, ie the number of records breached.
 +
|-
  
Toggle timeframe according to the period to be visualised.
+
| style="text-align: center;" | <b>  </b>
 +
[[File:Rplot.png|center|300px]]
 +
<b> </b>
 +
 
 +
|
 +
 
 +
'''Boxplot between type and source of breach'''
 +
To understand across industries, what are the distribution of the types and sources of breaches, measured by the risk score or the number of records breached. Ever wondered for the healthcare industry, how susceptible are you to breaches used for financial access? The risk score shows you the extent of damage the risk could create, so that you can better prioritize on the attacks you want to defend yourself against.
 +
 
 +
'''Technique: Filter'''
 +
Toggle between source or type of breach to observe the risk scores or number of records breached accordingly and choose the appropriate year from the slider or the desired industry
 +
'''Technique: Tooltip'''
 +
Mouse over to observe the details of individual records on the boxplot.
 
|-
 
|-
| style="text-align: center;" | <b></b>
 
[[File:Risk Comparison.png|center|500px]]
 
  
<b></b>
+
| style="text-align: center;" | <b>  </b>
 +
[[File:Boxplotoverview.png|center|300px]]
 +
<b> </b>
  
 
|
 
|
<h3>Risk Comparison</h3>
 
  
Consists of an interactive line chart, 2 treemaps and a radar chart.
+
'''Distribution of breaches'''
These visualisations are linked by checkboxes that detail various features such as type of industry, type of breach and source of breach. Both countries can be toggled and changed to other countries via a dropdown list.
+
Source of breach over types of breach scatterplot. Distribution of the sources of attacks for each type of attacks and vice versa. Every wondered behind every breach used for financial gains, is it more likely to be done by a malicious insider or outsider?
  
'''Line Chart'''
+
'''Technique: Tooltip'''
 +
Mouse over to observe the details of individual records
 +
|-
  
The line chart compares the breaches per pax for 2 countries determined via the dropdown list. The corresponding colors of each country located beside the flag will match the color used for the lines in the line graph
+
| style="text-align: center;" | <b>  </b>
 +
[[File:Treemapblue.PNG|center|300px]]
 +
<b> </b>
  
Toggle to display trend by year or by month in a cycle plot.
+
|
 
+
<h3>Risk Comparison</h3>
Tooltip when hovering the mouse over to show information on:
 
<ul>
 
<li>Breach per pax</li>
 
<li>Total Breach in Country</li>
 
<li>Average Risk Score</li>
 
</ul>
 
  
 
'''Treemap'''
 
'''Treemap'''
  
The treemap shows a high level view of our breaches and displaying the breach details at the same time. The different rectangles in the treemap will be colored with different intensities based on risk scores. It allows us to see patterns quickly when our eyes visually aggregate rectangles in the same group.
+
To understand in greater detail the characteristics of breaches affecting each country. Which industry is most threatened by breaches in a country and what are the causes of these breaches? Compare alone or between countries to gain more insights about the above!
 
 
Checkbox to check the different features that we would like to drill down to.
 
  
Toggle year to display different years’ results.
+
'''Technique: Filter'''
 +
a) Radio button to filter by source or type of breach at the first layer
 +
b) Toggle which countries and/or continents to select for comparison
 +
c) Slider to select time period to be observed
  
 +
'''Technique: Tooltip'''
 
Tooltip when hovering the mouse over to show:
 
Tooltip when hovering the mouse over to show:
 
<ul>
 
<ul>
Line 128: Line 160:
 
<li>Type of Industry</li>
 
<li>Type of Industry</li>
 
<li>Source of Breach</li>
 
<li>Source of Breach</li>
<li>Average Risk Score</li>
+
<li>Number of Records lost</li>
 +
<li>Risk Score</li>
 
</ul>
 
</ul>
  
'''Radar Chart'''
+
|-
  
The radar chart shows the breakdown of different Human Development Index indicators of various countries shown side by side. This allows us to see the possible different types of countries and see the relation these indicators may have with the breaches the country suffers from
 
 
Toggle year to display different years’ results.
 
 
Tooltip when hovering the mouse over to show the exact figure of the particular index.
 
 
|-
 
 
|}
 
|}
  
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#FF0090" face="Helvetica">ARCHITECTURE DIAGRAM</font>
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#27408B" face="Helvetica">ARCHITECTURE DIAGRAM</font>
 
</div>
 
</div>
  
 
<br>
 
<br>
[[File:Architecture Diagram.png|center|625px]]
+
[[File:Ad.png|center|625px]]
 
<br>
 
<br>
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#FF0090" face="Helvetica">KEY TECHNICAL CHALLENGES</font></div>
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color="#27408B" face="Helvetica">KEY TECHNICAL CHALLENGES</font></div>
 
<br>
 
<br>
 
[[File:TechChallenges.png|center|625px]]
 
[[File:TechChallenges.png|center|625px]]
 
<br>
 
<br>
<div style="background: #FFFFFF; margin-bottom:10px; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#FF0090 face="Helvetica">PROJECT TIMELINE</font></div>
+
<div style="background: #FFFFFF; margin-bottom:10px; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">PROJECT TIMELINE</font></div>
 
<br>
 
<br>
 
[[File:Timeline.png|center|600px]]
 
[[File:Timeline.png|center|600px]]
 
<br>
 
<br>
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#FF0090 face="Helvetica">REFERENCES</font></div>
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">REFERENCES</font></div>
 
1. https://www.csa.gov.sg/news/press-releases/cyber-threats-in-singapore-grew-in-2017-mirroring-global-trends
 
1. https://www.csa.gov.sg/news/press-releases/cyber-threats-in-singapore-grew-in-2017-mirroring-global-trends
 
<br>
 
<br>
Line 178: Line 204:
 
<br><br>
 
<br><br>
  
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#FF0090 face="Helvetica">COMMENTS</font></div>
+
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">COMMENTS</font></div>
 
Feel free to comments, suggestions and feedbacks to help us improve our project!:D
 
Feel free to comments, suggestions and feedbacks to help us improve our project!:D
 +
<div style="background: #FFFFFF; margin-top: 40px; font-weight: bold; line-height: 0.3em;letter-spacing:-0.08em;font-size:20px"><font color=#27408B face="Helvetica">Version 1 of proposal</font></div>
 +
[[File:Proposal The Defenders Version 1.pdf|thumb]]

Latest revision as of 17:20, 25 November 2018

Back to Project Home

INTRODUCTION


The internet has become an indispensable tool in today’s business world. While it has fostered a tremendous amount of economic growth, it also introduced a series of profound vulnerabilities with a multitude of impacts: socially, economically and/or invading the privacy of an individual or organizations. In 2017, attacks can total up to $600 billion dollars, this alarming number has caught the world’s attention. It is believed that attackers will become increasingly creative with attack methods and increasingly destructive payloads that better target system vulnerabilities, with the luxury of anonymity and time.

MOTIVATION


Cyber-attacks have made its way up to being one of the top 5 risk to global stability, amongst natural disasters, extreme weather, data fraud, and failure to address climate change. “Another growing trend is the use of cyberattacks to target critical infrastructure and strategic industrial sectors, raising fears that, in a worst-case scenario, attackers could trigger a breakdown in the systems that keep societies functioning. Over the years, there has been a shift from profit-motivated attacks to ones that aim to cause massive disruptions, such as the WannaCry ransomware campaign. Not knowing why or when attacks will strike, countries are left unprotected and unprepared.


GOALS AND OBJECTIVES


  • Understand and analyse the distribution of the Types, Sources and Impact of Breaches globally
  • Understand the relationship between who's the culprit(source) and why did he do it(type)
  • Compare the nature and impact of instances of reported breaches between countries
  • Compare breaches between countries over time


SELECTED DATASET


1.Breach Level Index
Source : Gemalto, the world leader in digital security.
Purpose : Dataset is designed to provide a simple way to input publicly disclosed information on data breaches and calculate a score indicating breach severity. (https://breachlevelindex.com/)

1. Organization Breached

2. Number of Records Breached

3. Date of Breach:

   01/01/2013 - 29/06/2018

4. Type of Breach

   -Nuisance (Email, Addresses, Affiliation)
   -Account Access (Username, Passwords to websites/ social media)
   -Financial Access (Bank Account Credentials)
   -Identity Theft ( Information can be used to masquerade someone)
   -Existential Data ( Info can be used to threaten business survival)

5. Source of Breach:

   -Lost Device
   -Stolen Device
   -Malicious Insider
   -Malicious Outsider
   -State Espionage

6. Location: Country

7. Industry:

   -Technology, Other, Retail, Government, Healthcare, Education
   -Financial, Social Media, Hospitality, Entertainment, Insurance
   -Non-profit, Industrial, Professional Services

8. Risk Score:

   Log 10 ( Type of Data * Source of Breach * Whether Action was taken)

BACKGROUND SURVEY OF RELATED WORKS
7E0018ED-6DDB-4282-AFB6-1FFBEF6B8901.jpg
STORYBOARD
Sketches Description

(Possible users: Security management personnel from multinational corporations or governmental organization, who wishes to examine if their current effort and resources devoted to preventing cyber attacks are justified and effective as compared to other organizations of similar characteristics.)

Heatmap.JPG

Breach Overview

Calendar Heatmap

To display time series data of the security breaches over the years, through a calendar heat map, by their respective industries. This way we can observe any spikes or anomalies within the same time period, across the different industries and take possible precautions for the future. Wouldn't it be interesting if we are able to spot correlations between the intended industry and the time of attack?

Technique: Filter Choose from dropdown box according to the industry to be visualised.

Technique: Tooltip Mouse over to observe the details of the day, ie the number of records breached.

Rplot.png

Boxplot between type and source of breach To understand across industries, what are the distribution of the types and sources of breaches, measured by the risk score or the number of records breached. Ever wondered for the healthcare industry, how susceptible are you to breaches used for financial access? The risk score shows you the extent of damage the risk could create, so that you can better prioritize on the attacks you want to defend yourself against.

Technique: Filter Toggle between source or type of breach to observe the risk scores or number of records breached accordingly and choose the appropriate year from the slider or the desired industry Technique: Tooltip Mouse over to observe the details of individual records on the boxplot.

Boxplotoverview.png

Distribution of breaches Source of breach over types of breach scatterplot. Distribution of the sources of attacks for each type of attacks and vice versa. Every wondered behind every breach used for financial gains, is it more likely to be done by a malicious insider or outsider?

Technique: Tooltip Mouse over to observe the details of individual records

Treemapblue.PNG

Risk Comparison

Treemap

To understand in greater detail the characteristics of breaches affecting each country. Which industry is most threatened by breaches in a country and what are the causes of these breaches? Compare alone or between countries to gain more insights about the above!

Technique: Filter a) Radio button to filter by source or type of breach at the first layer b) Toggle which countries and/or continents to select for comparison c) Slider to select time period to be observed

Technique: Tooltip Tooltip when hovering the mouse over to show:

  • Type of Breach
  • Type of Industry
  • Source of Breach
  • Number of Records lost
  • Risk Score
ARCHITECTURE DIAGRAM


Ad.png


KEY TECHNICAL CHALLENGES


TechChallenges.png


PROJECT TIMELINE


Timeline.png


REFERENCES

1. https://www.csa.gov.sg/news/press-releases/cyber-threats-in-singapore-grew-in-2017-mirroring-global-trends
2. https://www.todayonline.com/singapore/cyber-threats-singapore-go-phishing-attacks-see-biggest-jump
3. https://www.mcafee.com/enterprise/en-us/solutions/lp/economics-cybercrime.html
4. http://bl.ocks.org/mthh/7e17b680b35b83b49f1c22a3613bd89f
5. http://www.perceptualedge.com/articles/guests/intro_to_cycle_plots.pdf

Data Sources:
http://hdr.undp.org/en/data#
https://datacatalog.worldbank.org/dataset/harmonized-list-fragility-conflict-and-violence-countries
http://databank.worldbank.org/data/reports.aspx?source=2&series=IT.NET.USER.ZS#

COMMENTS

Feel free to comments, suggestions and feedbacks to help us improve our project!:D

Version 1 of proposal

File:Proposal The Defenders Version 1.pdf