TY - GEN
T1 - A picture is worth a thousand alerts
AU - Giacobe, Nicklaus A.
PY - 2013
Y1 - 2013
N2 - Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.
AB - Situation awareness (SA) in cyber-security is difficult to measure, yet new tools from research and industry promise improved cyber SA. This paper describes a human-subjects experiment using a high task fidelity cyber-security simulator. Participants from two groups (novice and experienced) were recruited and assigned to one of two interfaces (text and visual analytic), in a 2x2 between-subjects experimental design. The underlying cyber-security data presented to participants was the same for each interface, and included intrusion detection, firewall and vulnerability scan reports spanning the same time period. The participant's situation awareness was measured using different techniques including a freeze-probe, post-trial assessments of perceived workload and perceived SA as well as a measure of task effectiveness. Comparison of the results indicate that this multi-method approach of cognitive assessment may be useful in understanding a phenomenon like SA, especially where tasks are complex and virtual such as is common in cyber-security.
UR - http://www.scopus.com/inward/record.url?scp=84889855424&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84889855424&partnerID=8YFLogxK
U2 - 10.1177/1541931213571039
DO - 10.1177/1541931213571039
M3 - Conference contribution
AN - SCOPUS:84889855424
SN - 9780945289432
T3 - Proceedings of the Human Factors and Ergonomics Society
SP - 172
EP - 176
BT - Proceedings of the Human Factors and Ergonomics Society Annual Meeting, HFES 2013
T2 - 57th Human Factors and Ergonomics Society Annual Meeting - 2013, HFES 2013
Y2 - 30 September 2013 through 4 October 2013
ER -