Empirical framework for situation awareness measurement techniques in network defense

Author

Evangelopoulou, Maria ; Johnson, Christopher W.

Author_Institution

Univ. of Glasgow, Glasgow, UK

fYear

2015

fDate

8-9 June 2015

Firstpage

1

Lastpage

4

Abstract

This paper presents an empirical framework for implementing Situation Awareness Measurement Techniques in a Network Defense environment. Bearing in mind the rise of Cyber-crime and the importance of Cyber security, the role of the security analyst (or as this paper will refer to them, defenders) is critical. In this paper the role of Situation Awareness Measurement Techniques will be presented and explained briefly. Input from previous studies will be given and an empirical framework of how to measure Situation Awareness in a computing network environment will be offered in two main parts. The first one will include the networking infrastructure of the system. The second part will be focused on specifying which Situation Awareness Techniques are going to be used and which Situation Awareness critical questions need to be asked to improve future decision making in cyber-security. Finally, a discussion will take place concerning the proposed approach, the chosen methodology and further validation.

Keywords

computer crime; computer network security; decision making; computing network environment; cyber-crime; cybersecurity; decision making; network defense environment; situation awareness measurement techniques; Computer security; Decision making; Human factors; Measurement techniques; Monitoring; Unsolicited electronic mail; Cyber Security; CyberSA; Decision Making; Intrusion Detection; Network Defense; Situation Awareness; Situation Awareness Measurement Techniques;

fLanguage

English

Publisher

ieee

Conference_Titel

Cyber Situational Awareness, Data Analytics and Assessment (CyberSA), 2015 International Conference on

Conference_Location

London

Type

conf

DOI

10.1109/CyberSA.2015.7166132

Filename

7166132