Improving cyber attack detection through computer modeling

Nov 30, 2012

A new study shows computer network security analysts are not prepared for drawn out cyber attacks.

that have long caused major work disruption and theft of private information are becoming more sophisticated with prolonged attacks perpetrated by organized groups. In September 2012, , , the , and other financial institutions were targets of attacks for more than five weeks. Defense Secretary Leon E. Panetta warned that the United States was facing the possibility of a "cyber-Pearl Harbor" and was increasingly vulnerable to foreign who could disrupt the government, utility, transportation, and financial networks.

Key to protecting online operations is a high degree of "cyber security awareness," according to human factors/ergonomics researchers Varun Dutt, Young-Suk Ahn, and Cleotilde Gonzalez. In their Human Factors article, "Cyber Situation Awareness: Modeling Detection of Cyber Attacks With Instance-Based (http://bit.ly/VjVs7M)," they developed a computer model that presented 500 simulated cyber attack scenarios to gauge simulated network security analysts' ability to detect attacks characterized as either "impatient" (the threat occurs early in the attack) or "patient" (the threat comes later in the attack and is not detected promptly). Their model was able to predict the detection rates of security analysts by varying the analysts' degree of experience and risk tolerance as well as an attacker's strategy (impatient or patient attack).

The authors found that experienced, risk-averse analysts were less accurate at detecting threats in patient than in impatient attacks. "In a patient attack, when the attacker waits until the end to generate threats, the experiences in the analyst's memory that indicate an attack" are not as readily retrieved, says Dutt, which "makes it difficult to correctly detect patient attacks."

"Application of our results include the design of training tools that increase competency and the development of decision-support tools that improve defenders' on-the-job performance in detecting cyber attacks." The authors suggest that employers evaluate an analysts' before employment and/or manipulate tolerance levels during training to better identify threats.

As cyber warfare strategies and tactics evolve, the authors plan to further investigate the trend of drawn-out attacks and new intrusion detection software.

Explore further: Islamist group warns of new cyber attacks on US banks

Provided by Human Factors and Ergonomics Society

4 /5 (1 vote)
add to favorites email to friend print save as pdf

Related Stories

Cyber raids 'threaten British, US stock markets'

Jan 31, 2011

Stock exchanges in Britain and the United States have enlisted the help of the security services after finding out they were the victims of cyber attacks, The Times newspaper reported on Monday.

Islamist group warns of new cyber attacks on US banks

Sep 25, 2012

An Islamist group on Tuesday said it will carry out new cyber attacks on US banking targets, according to SITE Intelligence Group, following similar attacks last week in response to an anti-Islam film.

UK govt to announce new cyber security strategy

Nov 25, 2011

The government is set to announce new measures to tackle cyber crime on Friday as Britain's internet and electronic communications network comes under increased attack from hackers and foreign intelligence ...

Auditor warns Canada lagging on cyber security

Oct 23, 2012

Canada "has been slow" to set up firewalls to protect against cyber threats to critical infrastructure, leaving the nation vulnerable to crippling attacks, the auditor general warned Tuesday.

Cyber attack on Seoul's Unification Ministry

Aug 09, 2011

The South Korean ministry which handles relations with North Korea has been targeted by hackers in the latest of a series of online attacks on government and corporate websites, an official said Tuesday.

Recommended for you

Review: Google music plan solid, serendipitous

5 hours ago

Google's new music service offers a lot of eye candy to go with the tunes. The song selection of around 18 million tracks is comparable to popular services such as Spotify and Rhapsody, and a myriad of playlists ...

Facebook joins Web freedom group

May 22, 2013

Facebook on Wednesday became a full member of the Global Network Initiative, a non-governmental organization promoting Internet freedom and privacy rights.

Big Data—for better or worse

May 22, 2013

A full 90% of all the data in the world has been generated over the last two years. The internet companies are awash with data that can be grouped and utilised. Is this a good thing?

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

kochevnik
not rated yet Nov 30, 2012
Yeah Karl Roves staff smurfs failed him miserably in Ohio. Watching him sweat, rant and flail is fun.

More news stories

Google Drive sports new view and scan enhancements

(Phys.org) —Google Drive has a new look and functions. The makeover in Google Drive features scanning and interface enhancements that put the user into "card" mode. The enhancements make it easy for the ...

Solar Kettle allows for boiling water off the grid

(Phys.org) —A company called Contemporary Energy has unveiled a new device it calls the Solar Kettle. It looks very much like a normal coffee thermos, but has flaps on one side that open to allow for collecting ...

Pandora posts in-line 1Q loss, upbeat sales

(AP)—Internet radio company Pandora reported higher-than-expected revenue in the latest quarter, with losses in line with analysts' forecasts, as the number of subscribers who pay for ad-free listening rose above 2.5 million.

Future doctors unaware of their obesity bias

Two out of five medical students have an unconscious bias against obese people, according to a new study by researchers at Wake Forest Baptist Medical Center. The study is published online ahead of print in the Journal of ...

WHO: Scientific red tape mars efforts vs. virus

International efforts to combat a new pneumonia-like virus that has now killed 22 people are being slowed by unclear rules and competition for the potentially profitable rights to disease samples, the head ...