A picture is worth a thousand alerts

Research output: Chapter in Book/Report/Conference proceedingConference contribution

10 Citations (Scopus)

Abstract

Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.

Original languageEnglish (US)
Title of host publicationProceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013
Pages172-176
Number of pages5
DOIs
StatePublished - Dec 13 2013
Event57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013 - San Diego, CA, United States
Duration: Sep 30 2013Oct 4 2013

Other

Other57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013
CountryUnited States
CitySan Diego, CA
Period9/30/1310/4/13

Fingerprint

Intrusion detection
Design of experiments
Simulators
Industry
Experiments
data security
workload
vulnerability
industry
experiment
Group

All Science Journal Classification (ASJC) codes

  • Human Factors and Ergonomics

Cite this

Giacobe, N. A. (2013). A picture is worth a thousand alerts. In Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013 (pp. 172-176) https://doi.org/10.1177/1541931213571039
Giacobe, Nicklaus A. / A picture is worth a thousand alerts. Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013. 2013. pp. 172-176
@inproceedings{07167e7079864ce384f9c16b20947d2f,
title = "A picture is worth a thousand alerts",
abstract = "Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.",
author = "Giacobe, {Nicklaus A.}",
year = "2013",
month = "12",
day = "13",
doi = "10.1177/1541931213571039",
language = "English (US)",
isbn = "9780945289432",
pages = "172--176",
booktitle = "Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013",

}

Giacobe, NA 2013, A picture is worth a thousand alerts. in Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013. pp. 172-176, 57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013, San Diego, CA, United States, 9/30/13. https://doi.org/10.1177/1541931213571039

A picture is worth a thousand alerts. / Giacobe, Nicklaus A.

Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013. 2013. p. 172-176.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - A picture is worth a thousand alerts

AU - Giacobe, Nicklaus A.

PY - 2013/12/13

Y1 - 2013/12/13

N2 - Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.

AB - Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.

UR - http://www.scopus.com/inward/record.url?scp=84889855424&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84889855424&partnerID=8YFLogxK

U2 - 10.1177/1541931213571039

DO - 10.1177/1541931213571039

M3 - Conference contribution

SN - 9780945289432

SP - 172

EP - 176

BT - Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013

ER -

Giacobe NA. A picture is worth a thousand alerts. In Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013. 2013. p. 172-176 https://doi.org/10.1177/1541931213571039