An Alternative Framework for Research on Situational Awareness in Computer Network Defense

Abstract

In this chapter we present a new framework for the study of situation awareness in computer network defense (cyber-SA). While immensely valuable, the research to date on cyber-SA has overemphasized an algorithmic level of analysis to the exclusion of the human actor. Since situation awareness, and therefore cyber-SA, is a human cognitive process and state, it is essential that future cyber-SA research account for the human-in-the-loop. To that end our framework presents a basis for examining cyber-SA at the cognitive, system, work, and enterprise levels of analysis. In describing our framework we present examples of research that are emblematic of each type of analysis.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Aug 31, 2012
Accession Number
AD1059514

Entities

People

  • Eric Mcmillan
  • Michael Tyworth

Organizations

  • Pennsylvania State University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Cognition
  • Cognitive Workload
  • Computer Network Security
  • Computer Networks
  • Computer Programs
  • Computers
  • Cyberattacks
  • Cybersecurity
  • Cyberspace
  • Data Fusion
  • Detection
  • Information Operations
  • Information Science
  • Information Security
  • Information Systems
  • Intelligence Analysis
  • Intelligence Analysts
  • Intrusion Detection
  • New York
  • Psychology
  • Security
  • Situational Awareness
  • Standards
  • Thinking
  • United States
  • Visualizations
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Defense Acquisition Program Management
  • Systems Analysis and Design
  • Team-Based Human-Centered Cognitive Task Decision Making and Information Performance.

Technology Areas

  • Cyber