A picture is worth a thousand alerts

Nicklaus A. Giacobe

Research output: Chapter in Book/Report/Conference proceedingConference contribution

13 Scopus citations

Abstract

Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.

Original languageEnglish (US)
Title of host publicationProceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013
Pages172-176
Number of pages5
DOIs
StatePublished - 2013
Event57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013 - San Diego, CA, United States
Duration: Sep 30 2013Oct 4 2013

Publication series

NameProceedings of the Human Factors and Ergonomics Society
ISSN (Print)1071-1813

Other

Other57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013
Country/TerritoryUnited States
CitySan Diego, CA
Period9/30/1310/4/13

All Science Journal Classification (ASJC) codes

  • Human Factors and Ergonomics

Fingerprint

Dive into the research topics of 'A picture is worth a thousand alerts'. Together they form a unique fingerprint.

Cite this