Invited Speaker: Johnvey Hwang, Splunk
"Why did we build Splunk? Product Evolution and Innovation"
Bio: Johnvey Hwang heads the user interface development team at Splunk. His current role focuses on creating a flexible user interface as well as maintaining developer-friendly APIs on top of the Splunk Server. He often explores remixing various interfaces into Splunk, in search of efficient design patterns. His previous work centered around emerging AJAX technologies, some presented at the AJAXWorld conference. Johnvey has been with Splunk for over 4 years and holds a B.S. in Operations Research and Industrial Engineering from Cornell University.
- System Administrators as Broker Technicians,
Nicole F. Velasquez, The University of Arizona, Suzanne P. Weisband, The University of Arizona
This research investigates the work practices of system administrators. Using semi-structured interviews and an analysis of existing system administrator literature, we theorize that system administrators act as technical brokers who bridge two communities, the end users they support and their own technical community. We also show that system administrators, like other technical workers, rely on contextual knowledge. This knowledge is largely acquired through practice and less through formal education and certification. Through a discussion of common reactive and proactive system administrator duties, we present system administrators as broker technicians who must mediate between the end users they support and their technical community. We end with a discussion of the changing role of sysadmins as their tools and users get more sophisticated.
- Scripting Practices in Complex Systems Management
Eser Kandogan, IBM Almaden Research Center, Paul P. Maglio, IBM Almaden Research Center, Eben M. Haber, IBM Almaden Research Center, John H. Bailey, IBM Almaden Research Center,System administrators are end-users too. And as end-users, they develop tools, create web pages, write command-line scripts, use spreadsheets, and repurpose existing tools. In short, they engage in end-user programming activities in support of their systems management work. We examined system administrator practices in software tool development, operations, and maintenance based on ethnographic field studies at service delivery centers and data centers across the United States. Our findings suggest that software practices were mostly informal and collaborative and mixed within formal change processes; tool development and debugging were interleaved with tool use and maintenance as they interacted with live systems; and the complexity of large-scale systems and the risks involved in changing live and critical systems put increased demands on system administrators. We argue that system administrators might benefit from certain software engineering methodologies such as agile software development and software modeling.
"Do I Know Who, What, When, Where, How, and WHY?"
All rather lofty statements … how do we bring these concepts to reality for people managing IT services and making decisions on a daily basis?
This presentation identifies the types of data, information, and knowledge needed by IT personnel on a regular basis. By profiling the types of decisions that need to be made, my goal is to help participants identify new and innovative ways of enabling those decisions and observing the impact of the decisions.
Bio: Carolyn M. Hennings is a consultant at Windward IT Solutions, which provides service management consulting services, including ITIL process design and implementation. At Windward, Carolyn provides ITIL consulting services to clients in the federal and commercial sectors. She has over 18 years of experience in helping IT organizations understand and advance their operational and project management processes. In utility, consulting, technology, and Internet companies, she has focused on how things work in IT. Through this experience and her research into both project management and IT best practices, Carolyn provides guidance to organizations interested in providing IT services in effective and efficient ways.
- Visual Support for Analyzing Network Traffic and
Intrusion Detection Alerts using TreeMap and Graph Representation
Florian Mansmann, University of Konstanz, Fabian Fischer, University of Konstanz, Daniel A. Keim, University of Konstanz, Stephen C. North, AT&T Research
Network security depends heavily on automated Intrusion Detection Systems (IDS) to sense malicious activity. Unfortunately, IDS often deliver both too much raw information, and an incomplete local picture, impeding accurate assessment of emerging threats. We propose a system to support analysis of IDS logs, that visually pivots large sets of Net-Flows. In particular, two visual representations of the flow data are compared: a TreeMap visualization of local network hosts, which are linked through hierarchical edge bundles with the external hosts, and a graph representation using a force-directed layout to visualize the structure of the host communication patterns. Three case studies demonstrate the capabilities of our tool to 1) analyze service usage in a managed network, 2) detect a distributed attack, and 3) investigate hosts in our network that communicate with suspect external IPs.
- Network Stack Diagnosis and Visualization Tool
Krist Wongsuphasawat, University of Maryland, Pornpat Artornsombudh, University of Maryland, Bao Nguyen, University of Maryland, Justin McCann, University of Maryland,
End users are often frustrated by unexpected problems while using networked software, leading to frustrated calls to the help desk seeking solutions. However, trying to locate the cause of these unexpected behaviors is not a simple task. The key to many network monitoring and diagnosis approaches is using cross-layer information, but the complex interaction between network layers and usually large amount of collected data prevent IT support personnel from determining the root of errors and bottlenecks. There is a need for the tools that reduce the amount of data to be processed, offer a systematic exploration of the data, and assist whole- stack performance analysis.
In this paper, we present Visty, a network stack visualization tool that allows IT support personnel to systematically explore network activities at end hosts. Visty can provide an overview picture of the network stack at any specified time, showing how errors in one layer affect the performance of others. Visty was designed as a prototype for more advanced diagnosis tools, and also may be used to assist novice users in understanding the network stack and relationships between each layer.
- Soramame: WYSWYG Access Control Tool for Mashups
Nachi Ueno, NTT Information Sharing Platform Laboratories, Ryota Hashimoto, NTT Information Sharing Platform Laboratories, Michio Shimomura, NTT Information Sharing Platform Laboratories, Kenji Takahashi, NTT Information Sharing Platform Laboratories,
We discuss the design of a novel tool for usable and secure access control named Soramame. We focused on the user problem of creating a mental model of access control. To help better create mental models, we propose using Soramame. Soramame is a WYSWYC (What You See is What You Control) access control user interface. It extracts and visualizes the data-flows of access control policies and uses animation to help users better understand the policies.
- An Intelligent Contextual Support System for Intrusion
Detection Tasks
Balaji Rajendran, Centre for Development of Advanced Computing, Dnyanesh Pawar, Centre for Development of Advanced Computing
The cognitively challenging task of Intrusion Detection, undertaken by Network Security Engineers (NSE) even through a sophisticated Intrusion Detection System (IDS), demands considerable effort and time in figuring out the real intrusion attempts. We believe that a support system providing contextual assistance in the task of Intrusion detection would be of immense help to the Network Security Engineers. In this paper, we discuss about the features and mechanisms of such an intelligent contextual support system, along with the implementation and quantitative evaluation of it by using certain observable parameters of performance. The results indicated improvement in the productivity of the NSE and also the usability of the IDS.
"Innovation Ecologies: Toward an Infrastructure for Knowledge Creation"
Bio: Dr. Susan Winter is currently a Program Director in the Office of Cyberinfrastructure at the National Science Foundation. Her particular areas of focus include the study of virtual organizations as socio-technical systems and cyberinfrastructure learning and workforce development. Dr. Winter is also a Visiting Associate Professor at Portland State University and served on the faculty at the University of North Carolina, Charlotte for 7 years. She has worked as a project manager at Duke Energy and has over 20 years of international consulting experience. She has a Ph.D from the University of Arizona and her research on IT and the transformation of work has been presented at national conferences and published in top journals and has won numerous research awards. She sits on the editorial board of three major journals and is currently a member of AIS and AOM
- The world of system administration has
changed in the last
15 years. We
now have SANs, Clouds, and massive clusters. Why are so many of the
problems still the same? What is the next thing and the issues it
will
bring?
- Daniel Boyd, Google
- AEleen Frish, Exponential Consulting
- Joseph Kern, Deleware Dept. of Education
- Daniel
Klein, Lone Wolf Systems
- Tom Limoncelli, Google (Organizer)
Affective
Pre-Operative Health
Care Communication Robot
R. Khosla, La Trobe
University, Mei-Tai
Chu, La Trobe University, K. G. Yamada, NEC Corporation, T. Yamaguchi,
NEC
Corporation
Evaluation
of
Collaborative
GIS
Usage
Jeffrey
D. Campbell,
University of Maryland Baltimore County, Michael McGuire, University of
Maryland Baltimore County
Learn
IT: A tool for search and visualization of IT projects
Maher
Rahmouni, Andrew Byde, HP Labs Bristol, Claudio Bartolini, HP Labs Palo
Alto
Lessons
for IT
Architecture from Physical Architecture
William
T. Schiano, Bentley
University, Leslie J. Waguespack, Bentley University, David J. Yates,
Bentley
University
Towards
Developing
Usability Heuristics for Evaluation of IT Security Management (ITSM)
Tools
Pooya
Jaferian, University
of British Columbia, David Botta, University of British Columbia,
Kirstie
Hawkey, University of British Columbia, Konstantin Beznosov, University
of
British Columbia
Transforming
the
IT
Workplace
by
Realizing Personal Online Networks
David Gurzick, University
of
Maryland
Baltimore
County
Use of Eyetracking in
Usability Testing
Anjali
Phukan, University
of
Maryland
Baltimore
County
Visual
Analysis of
NetFlows with VIAssist
John R.
Goodall,
Secure Decisions
Workflow
and Resource
Management for Energy-Efficient Supercomputing
Richard
Centauro, International Image
System, Kurt L. Keville, MIT, Gaurav Khanna, University of
Massachusetts, David
J. Yates, Bentley University