Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Timothy J. Shimeall
October 2017 - Presentation Four Valuable Data Sources for Network Security Analytics

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

This webinar will focus on the development and application of combined data analytics and will offer several examples of analytics that combine domain resolution data, network device inventory and configuration data.

May 2017 - Webinar Building Analytics for Network Flow Records

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall, Matthew Heckathorn

Learn how to identify network flow characteristics and metrics that support understanding traffic

September 2016 - Podcast Network Flow and Beyond

Authors: Timothy J. Shimeall

In this podcast, Timothy Shimeall discusses approaches for analyzing network security using and going beyond network flow data to gain situational awareness to improve security.

January 2016 - Presentation Planning Curricula for the Network Traffic Analyst of 2018-2020

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

This FloCon 2016 presentation describes the likely skills, abilities, and challenges for network traffic analysts in the next three to five years.

January 2016 - Presentation Merging Network Configuration and Network Traffic Data in ISP-Level Analyses

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

This presentation was given in January 2016 at FloCon, a network security conference that provides a forum for large-scale network flow analytics.

January 2015 - Presentation Network Flow Analysis in Information Security Strategy

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation from FloCon 2015, Tim Shimeall describes a series of analytics keyed to the strategies they support.

April 2014 - Book Introduction to Information Security: A Strategic-Based Approach

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall, Jonathan Spring

The authors provide a strategy-based introduction to providing defenses as a basis for engineering and risk-management decisions in the defense of information.

January 2014 - Presentation Quilt: A System for Distributed Temporal Queries of Security Relevant Heterogeneous Data

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall, George Jones

In this presentation, Tim Shimeall and George Jones describe Quilt, a distributed data query engine that allows for a broach range of data and that supports temporal relationships.

January 2014 - Presentation Advanced SiLK Analysis

Topics: Network Situational Awareness

Authors: Geoffrey T. Sanders, Timothy J. Shimeall

In this presentation, Geoff Sanders and Tim Shimeall provide analysts with knowledge and skills to create, display, and use prefix maps.

May 2013 - Poster 2013 IEEE Symposium Quilt Poster

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall, George Jones

This poster about Quilt, a system for distributed queries of security-relevant data, was presented at the 2013 IEEE Symposium on Security and Privacy.

May 2013 - Presentation Quilt: A System for Distributed Queries of Security-Relevant Data

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall, George Jones, Derrick Karimi

In this presentation, the authors describe Quilt, a system for distributed queries of security-relevant data.

January 2013 - Presentation The Limitations of Analysis at Scale

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Timothy Shimeall describes the analysis of large-scale network traffic.

January 2013 - Presentation Limitations of Traffic Analysis at Large Scale

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Timothy Shimeall describes the analysis of large-scale network traffic.

January 2013 - Poster Behavioral Whitelists of High Volume Web Traffic to Specific Domains

Topics: Network Situational Awareness

Authors: George Jones, Timothy J. Shimeall

This poster shows how to facilitate incident analysis by creating whitelists of external domains that receive large volumes of traffic.

December 2012 - Technical Report Common Sense Guide to Mitigating Insider Threats, Fourth Edition

Topics: Insider Threat

Authors: George Silowash, Dawn Cappelli, Andrew P. Moore, Randall F. Trzeciak, Timothy J. Shimeall, Lori Flynn

In this report, the authors define insider threats and outline current insider threat patterns and trends.

January 2012 - Presentation Network Situational Displays from Network Flow Data

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Timothy Shimeall describes the difficulties and goals associated with network flow data displays.

August 2011 - Presentation Analytical Evaluation Framework

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, given at GFIRST 2011, Tim Shimeall provides a framework for evaluating network traffic analysis tools.

January 2011 - Presentation Exploring the Interactions Between Network Data Analysis and Security Information/Event Management

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Timothy Shimeall explores the interaction of data analysis and security event management and new approaches to be explored.

January 2010 - Presentation A Temporal Logic For Network Flow Analysis

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Tim Shimeall discusses temporal logic adaptations of flow analysis and how formalization of time relationships can help improve flow analysis methods.

January 2010 - Presentation Flow Analysis for Network Situational Awareness

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, given at FloCon in January 2010, Tim Shimeall discusses networks, external events and trends, and network dependencies and analysis.

December 2009 - Podcast Using the Facts to Protect Enterprise Networks: CERT's NetSA Team

Authors: Timothy J. Shimeall, Julia H. Allen

In this podcast, Timothy Shimeall describes how network defenders and business leaders can use NetSA measures to protect their networks.

January 2009 - Presentation Detecting Spam and Spam Responses

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Tim Shimeall discusses email, spam, and using flow-based analysis to investigate email-based behaviors.

January 2009 - Presentation Education in Flow Analysis

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Tim Shimeall discusses ways to address education in flow analysis at the undergraduate, graduate, and professional levels.

January 2009 - White Paper Common Sense Guide to Prevention and Detection of Insider Threats 3rd Edition – Version 3.1

Topics: Insider Threat

Authors: Dawn Cappelli, Andrew P. Moore, Randall F. Trzeciak, Timothy J. Shimeall

In this paper, the authors present findings from examining insider crimes in a new way and add new practices that were not present in the second edition.

January 2008 - Presentation Anonymizing Network Flow Data

Topics: Network Situational Awareness

Authors: Timothy J. Shimeall

In this presentation, Tim Shimeall discusses network flow data anonymization, subnet preserving and collapsing, host preserving and collapsing, and ports.

May 2007 - Conference Paper Predicting Future Botnet Addresses With Uncleanliness

Topics: Network Situational Awareness

Authors: Michael Collins, Timothy J. Shimeall, Sid Faber, Jeff Janies, Rhiannon Weaver, Markus Deshon

In this paper, the authors discuss whether we can effectively predict future bot locations.