Title :
idsNETS: An experimental platform to study situation awareness for intrusion detection analysts
Author :
Mancuso, Vincent F. ; Minotra, Dev ; Giacobe, Nicklaus ; McNeese, Michael ; Tyworth, Michael
Author_Institution :
Coll. of Inf. Sci. & Technol., Pennsylvania State Univ., University Park, PA, USA
Abstract :
In this paper we present a new human-in-the-loop simulation designed to help better understand the role of the human in a cyber-analysis task. Based on qualitative research, previous literature within cyber security, and our experience creating simulations, we built a new system, idsNETS, which is capable of simulating both the environment and data that is present in a cyber-security intrusion detection task. This simulation, which is the first built upon the NeoCITIES Experimental Task Simulator (NETS), was implemented to mimic the task of an intrusion detection analyst. From this work, we present an overview of the scaled-world definitions, the NETS Simulation Engine, and the Simulation User Interface, as well as discuss how this simulation can be leveraged to measure situation awareness in cyber security. Finally we discuss the future research that the idsNETS system will enable us to conduct.
Keywords :
security of data; user interfaces; NETS simulation engine; NeoCITIES experimental task simulator; cyber-analysis task; cyber-security intrusion detection task; human-in-the-loop simulation; idsNETS system; simulation user interface; situation awareness; Analytical models; Biological system modeling; Computer security; Data models; Engines; Intrusion detection; User interfaces; Cognition; Computer Simulation; Information Security; Intrusion Detection;
Conference_Titel :
Cognitive Methods in Situation Awareness and Decision Support (CogSIMA), 2012 IEEE International Multi-Disciplinary Conference on
Conference_Location :
New Orleans, LA
Print_ISBN :
978-1-4673-0343-9
DOI :
10.1109/CogSIMA.2012.6188411
