FloCon 2004 Presentations

At the first FloCon in 2004, attendees gave talks on analysis, infrastructure, and data sharing. Topics covered included scanning very large networks, standardization efforts to support data exchange, security at line speed with netflows, and AirCERT.

Sessions and presentations included:

• AirCERT: Building a Framework for Cross- Administrative Domain Data Sharing, Roman Danyliw
• Analysis of the US-CERT DAC, John McNutt
• Data Sharing: Lessons Learned by the CERT/CC and the CERT/NetSA Groups, Roman Danyliw
• Empirically Based Analysis: The DDoS Case, Michael Collins
• Detection and Analysis of Scans on Very Large Networks, Marc Kellner and Carrie Gates
• Flow Data Analysis in SWITCH / ETH Zurich Project DDoSVax, Arno Wagner
• Locality Based Analysis of Network Flows, John McHugh, Carrie Gates, and Damon Becknel
• NetFlow Data Capturing and Processing at SWITCH and ETH Zurich, Arno Wagner
• Network Telescopes: The FloCon Files, David Moore and Colleen Shannon
• Security at Line Speed with NetFlows, William Yurcik
• Sharing Intelligence Is Our Best Defense: Incentives That Work versus Disincentives That Can Be Solved, William Yurcik, Adam Slagell, and Jun Wang
• Statistical Methods for Flow Data, Joseph Kadane
• The State of Standardization Efforts to Support Data Exchange in the Security Domain, Roman Danyliw
• Wish List, Tom Longstaff