Network Security Issues

nLive's underlying problem-detection technology is built with security in mind. Security issues in traffic often appear in the form of an unusual access or one or more abnormal transactions. The multi-dimensional detectors for detecting various traffic issues can capture abnormal accesses and traffic, and then convert them into 'problems', which gets stores in databases and shown on the GUI. With a single click, one can view the underlying traffic that caused the problem.

In addition to the 35 odd generic abnormal-traffic detectors, nLive also has special detectors for worms/virus propagation, peer-to-peer activity like skype, bit-torrent, etc. It can also detect rogue hosts in the network that appear suddenly.

The security issues come to the 'problems' area, and the misbehaving hosts will exhibit high scores. In addition, traffic itself is marked abnormal, when nLive suspects a security breach.

For security purposes, one can utilize:

• Host scores charts where high score indicates higher security risk associated with that host
• Sources of what is marked as 'abnormal traffic'
• Problem tables and problem reports where potential security issues appear
• Graphs where links are color coded in red.