The MetaSTAT Infrastructure

The STAT Team

Computer Security Group
Department of Computer Science
University of California Santa Barbara

Table of Contents

1. Introduction

1.1. A Web of Sensors

2. The CommSTAT Infrastructure

2.1. Description

2.2. CommSTAT API

2.2.1. Error handling functions
2.2.2. Communication functions
2.2.3. Message functions
2.2.4. Dynamic String functions

3. The STAT Proxy

3.1. Description

3.2. Messages and Directive Processing

3.2.1. Messages with Local Processing
3.2.2. Messages Generated
3.2.3. Messages Relayed
3.2.4. Messages for the STAT Core

4. The MetaSTAT Controller

4.1. Installation and Invocation
4.2. Messages and Sensor Information Management

5. The MetaSTAT Collector

5.1. Description
5.2. Installation
5.3. Invocation

6. The Alert Viewer

6.1. Description

6.2. Installation

6.3. Invocation

6.4. User Manual

6.4.1. The Menubar
6.4.2. The Left Panel
6.4.3. The Main View
6.4.4. The Tree View
6.4.5. The Table View
6.4.6. Deleting Alerts
6.4.7. Configuring the Table View
6.4.8. Shutting Down

Bibliography

A. Installation

A.1. Software Requirements

A.2. Basic Installation

A.2.1. Install from the tar ball
A.2.2. Install from pre-compiled RPM

A.3. Run the applications

B. Feedback

List of Figures
1-1. Architecture of a web of sensors.
5-1. Visualization of IDMEF alert database schema. (Full size)
6-1. MetaSTAT main user interface.

Technical Documentation

		Next
		Introduction