Lies, Pseudoscience, and Hype in the Cybersecurity of Human Factors

Abstract

Security experts have a variety of specialties. Event monitoring, Incident management, Situational awareness, Vulnerability management. Although the details change, systems used by experts almost never have the usability for the expert considered. Intelligibility of measurements. Hinders inter-organizational communication, especially experts across sectors. Consistency of human scoring. Usability of the scoring system, gets into issues of language, non-native English speakers, etc. Timely delivery of scoring. For example, for CVSS humans need to create the scores.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2020
Accession Number
AD1111902

Entities

People

  • Jonathan M. Spring

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Copyrights
  • Department Of Defense
  • Department Of Homeland Security
  • Engineering
  • Governments
  • Guarantees
  • Homeland Security
  • Language
  • Materials
  • Patents
  • Security
  • Situational Awareness
  • Software Development
  • Standardization
  • United States
  • Universities
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Organizational Process Management (OPM).
  • Speech Processing/Speech Recognition.
  • Team-Based Human-Centered Cognitive Task Decision Making and Information Performance.

Technology Areas

  • Cyber