Abstract
Analyzing attacker behavior and generating realistic models to accurately capture the realities of cybersecurity threats is a very challenging task for researchers. Psychological personality and profiling studies provide a broad understanding of personality traits, but lack a level of interactive immersion that enables observers to collect concrete cybersecurity-relevant behavioral data. Participant’s intricate actions and interactions with real computer systems are seldom captured in any cybersecurity studies. Our work focuses on capturing human actions and decisions to provide an empirical basis for these types of models. We provide a practical methodology that helps bridge the gap between theory and practice by facilitating construction, experimentation, and data collection for repeatable and scalable human experimentation with realistic cybersecurity scenarios. While our methodology is platform agnostic, we describe state of the art technologies that may be used to satisfy the objectives of each of the stages of the methodology.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Gaia, J., et al.: Psychological profiling of hacking potential. In: Proceedings of the 53rd Hawaii International Conference on System Sciences (2020)
Basak, A., et al.: An initial study of targeted personality models in the FlipIt game. In: Bushnell, L., Poovendran, R., Başar, T. (eds.) GameSec 2018. LNCS, vol. 11199, pp. 623–636. Springer, Cham (2018). https://doi.org/10.1007/978-3-030-01554-1_36
Gutierrez, M., et al.: Evaluating Models of Human Behavior in an Adversarial Multi-Armed Bandit Problem (2019)
Abbott, R.G., et al.: Log analysis of cyber security training exercises. Proc. Manufact. 3, 5088–5094 (2015)
Crossler, R.E., et al.: Future directions for behavioral information security research. Comput. Secur. 32, 90–101 (2013)
Shiravi, A., et al.: Toward developing a systematic approach to generate benchmark datasets for intrusion detection. Comput. Secur. 31(3), 357–374 (2012)
Seebruck, R.: A typology of hackers: classifying cyber malfeasance using a weighted arc circumplex model. Digit. Invest. 14, 36–45 (2015)
McClain, J., et al.: Human performance factors in cyber security forensic analysis. Proc. Manufact. 3, 5301–5307 (2015)
Acosta, J.C., et al.: A platform for evaluator-centric cybersecurity training and data acquisition. In: MILCOM 2017–2017 IEEE Military Communications Conference (MILCOM). IEEE (2017)
Abrahams, I., Millar, R.: Does practical work really work? a study of the effectiveness of practical work as a teaching and learning method in school science. Int. J. Sci. Educ. 30(14), 1945–1969 (2008)
Karat, J., Dayton, T.: Practical education for improving software usability. In: Proceedings of the SIGCHI Conference on Human Factors in Computing Systems (1995)
Wang, H., et al.: Construction of practical education system for innovative applied talents cultivation under the industry-education integration. In: Proceedings of the 5th International Conference on Frontiers of Educational Technologies (2019)
Millar, R., Abrahams, I.: Practical work: making it more effective. School Sci. Rev. 91(334), 59–64 (2009)
Hahn, A., et al.: Cyber-physical security testbeds: architecture, application, and evaluation for smart grid. IEEE Trans. Smart Grid 4(2), 847–855 (2013)
Networks and Communication Systems Branch. Common Open Research Emulator (CORE) | Networks and Communication Systems Branch. https://www.nrl.navy.mil/itd/ncs/products/core. Accessed 15 April 2020
Law, A.M.: How to build valid and credible simulation models. In: 2008 Winter Simulation Conference. IEEE (2008)
Sargent, R.G.: Verification and validation of simulation models. In: Proceedings of the 2010 Winter Simulation Conference. IEEE (2010)
Acknowledgement
This research was sponsored by the U.S. Army Combat Capabilities Development Command Army Research Laboratory and was accomplished under Cooperative Agreement Number W911NF-13-2-0045 (ARL Cyber Security CRA). The views and conclusions contained in this document are those of the authors and should not be interpreted as representing the official policies, either expressed or implied, of the Combat Capabilities Development Command Army Research Laboratory or the U.S. Government. The U.S. Government is authorized to reproduce and distribute reprints for Government purposes notwithstanding any copyright notation here on.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Padilla, E., Acosta, J.C., Kiekintveld, C.D. (2021). Cybersecurity Methodology for Specialized Behavior Analysis. In: Goel, S., Gladyshev, P., Johnson, D., Pourzandi, M., Majumdar, S. (eds) Digital Forensics and Cyber Crime. ICDF2C 2020. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 351. Springer, Cham. https://doi.org/10.1007/978-3-030-68734-2_14
Download citation
DOI: https://doi.org/10.1007/978-3-030-68734-2_14
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-68733-5
Online ISBN: 978-3-030-68734-2
eBook Packages: Computer ScienceComputer Science (R0)