Issues
12

EAI Endorsed Transactions on Security and Safety

Editor(s)-in-Chief: Peng Liu
Guest Editor(s): Nancy. J. Cooke and Michael. D. McNeese

Growing threats and increasingly also failures due to complexity may compromise the security and resilience of network and service infrastructures. Applications and services require security of data handling and we need new security architectures and scalable and interoperable security policies for…

Growing threats and increasingly also failures due to complexity may compromise the security and resilience of network and service infrastructures. Applications and services require security of data handling and we need new security architectures and scalable and interoperable security policies for this. There is a need to guarantee end-to-end security in data communications and storage, including identity management and authentication. Moreover, we need technology to enable network security monitoring and tracing and to assess the trustworthiness of infrastructures and services. It must ensure the protection of personal data and privacy and to properly assign liability and risks, together with the appropriate governance models needed to do so. Furthermore this is applied to the settings of Public Safety in general.

more »
Submission Instructions
Publisher
ICST
ISSN
2032-9393
Volume
13
Published
3rd May 2013

  • Preface to special issue on the cognitive science of cyber defence analysis

    Editorial in EAI Endorsed Transactions on Security and Safety 13(2): e1

    Nancy. J. Cooke, Michael. D. McNeese

    Abstract
    An introduction to the key topics in the cognitive science of cyber defence analysis including an overview of the challenges that exist and need to be faced in the field.An introduction to the key topics in the cognitive science of cyber defence analysis including an overview of the challenges that exist and need to be faced in the field.
     more »

  • Framing the Human Dimension in Cybersecurity

    Research Article in EAI Endorsed Transactions on Security and Safety 13(2): e2

    J. Nixon, B. McGuinness

    Abstract
    The advent of technologies that can seamlessly operate in different environments with differing levels of security present new challenges to the cybersecurity specialist seeking to ensure the safety …The advent of technologies that can seamlessly operate in different environments with differing levels of security present new challenges to the cybersecurity specialist seeking to ensure the safety of data, process or output of a complex system.

    This paper reviews the human dimension of cybersecurity. The Human Factors Integration (HFI) framework is employed as a structure with which to consider the many ways in which the human can differentially affect the security of a system both positively and negatively.

    We conclude that when the human factors element is analysed when specifying and designing secure and safe systems, it is far more likely that the human can assist and increase the overall level of security. As in other high technology sectors such as aviation or petrochemical, if not considered, the human can often ‘bulldoze’ through the most carefully considered and designed security or safety barriers
    more »

  • Decision-making and emotions in the contested information environment

    Research Article in EAI Endorsed Transactions on Security and Safety 13(2): e3

    M.W. Haas, L.M. Hirshfield, P.V. Ponangi, P. Kidambi, D. Rao, N. Edala, E. Armbrust, M. Fendley, S. Narayanan

    Abstract
    Future conflicts will necessitate the ability to conduct effective military operations in a contested information environment. The building and maintaining of robust situational awareness, protectio…Future conflicts will necessitate the ability to conduct effective military operations in a contested information environment. The building and maintaining of robust situational awareness, protection of decision-making effectiveness of individuals and teams, fighting through information attacks from both in, and through, the cyberspace domain, will be essential. Increasing the knowledge of the mechanisms involved in degrading task performance and decision-making during cyber attacks will enable the development of advanced human-centered defensive techniques that aid fight-through capability. In this position paper, the development and evaluation of software that simulates real-time and persistent manipulation of the information environment is discussed. Results of the evaluation indicated that the task performance of a team of decision-makers performing collaborative tasks could be degraded through real-time manipulation of cyberspace content and operation. The paper concludes with a discussion of focus and direction for future research and development. It is suggested that the building of a deeper understanding of the perceptual and cognitive factors that are significant in the relationship between information environment manipulation and reduction in task performance is required. This understanding will aid in the defence of cyberspace attacks, will aid in fight through and mission assurance, and will aid the Information Operations community.
     more »

  • Training organizational supervisors to detect and prevent cyber insider threats: two approaches

    Research Article in EAI Endorsed Transactions on Security and Safety 13(2): e4

    Dee H. Andrews , Jared Freeman, Terence S. Andre, John Feeney, Alan Carlin , Cali M. Fidopiastis, Patricia Fitzgerald

    Abstract
    Cyber insider threat is intentional theft from, or sabotage of, a cyber system by someone within the organization. This article explores the use of advanced cognitive and instructional principles to …Cyber insider threat is intentional theft from, or sabotage of, a cyber system by someone within the organization. This article explores the use of advanced cognitive and instructional principles to accelerate learning in organizational supervisors to mitigate the cyber threat. It examines the potential advantage of using serious games to engage supervisors. It also posits two systematic instructional approaches for this training challenge – optimal path modelling and a competency-based approach. The paper concludes by discussing challenges of evaluating training for seldom occurring real world phenomena, like detecting a cyber-insider threat.
    more »

  • Cyber situation awareness and teamwork

    Research Article in EAI Endorsed Transactions on Security and Safety 13(2): e5

    Nancy J. Cooke, Michael Champion, Prashanth Rajivan, Shree Jariwala

    Abstract
    Cyber analysis is a complex task that requires the coordination of a large sociotechnical system of human analysts working together with technology. Adequate situation awareness of such a complex sy…Cyber analysis is a complex task that requires the coordination of a large sociotechnical system of human analysts working together with technology. Adequate situation awareness of such a complex system requires more than aggregate situation awareness of individuals. Teamwork in the form of communication and information coordination is at the heart of team-level situation awareness. In this position paper, we report observations from previously conducted cognitive task analyses that suggest that teamwork is lacking in many cyber analysis organizations. Communication is ineffective, team roles are inconsistent across organizations, reward structures and selection may thwart collaboration, and the environment is conducive to individual work. Suggestions for improving teamwork in the cyber domain are offered.
     more »

  • A human-in-the-loop approach to understanding situation awareness in cyber defence analysis

    Research Article in EAI Endorsed Transactions on Security and Safety 13(2): e6

    Michael Tyworth, Nicklaus A. Giacobe, Vincent F. Mancuso, Michael D. McNeese, David L. Hall

    Abstract
    In this paper we argue for a human-in-the-loop approach to the study of situation awareness in computer defence analysis (CDA). The cognitive phenomenon of situation awareness (SA) has received sign…In this paper we argue for a human-in-the-loop approach to the study of situation awareness in computer defence analysis (CDA). The cognitive phenomenon of situation awareness (SA) has received significant attention in cybersecurity/CDA research. Yet little of this work has attended to the cognitive aspects of situation awareness in the CDA context; instead, the human operator has been treated as an abstraction within the larger human-technology system. A more human-centric approach that seeks to understand the socio-cognitive work of human operators as they perform CDA will yield greater insights into the design of tools and interfaces for CDA. As support for this argument, we present our own work employing the Living Lab Framework through which we ground our experimental findings in contextual knowledge of real-world practice.
     more »