Effects of cyber security knowledge on attack detection
作者:
Highlights:
• We quantitatively evaluate the role of knowledge when detecting cyber-attacks.
• Knowledge supports the identification of the relevant cues for classifying events.
• Knowledge facilitates integration of cues when detecting malicious network events.
• Knowledge makes a decision maker more aware of the type of cyber-attack (context).
• Situated knowledge is crucial to correctly integrate events and detect a cyber-attack.
摘要
•We quantitatively evaluate the role of knowledge when detecting cyber-attacks.•Knowledge supports the identification of the relevant cues for classifying events.•Knowledge facilitates integration of cues when detecting malicious network events.•Knowledge makes a decision maker more aware of the type of cyber-attack (context).•Situated knowledge is crucial to correctly integrate events and detect a cyber-attack.
论文关键词:Cyber security,Knowledge,Dynamic decision-making,Intrusion-detection system,Expertise
论文评审过程:Available online 9 February 2015.
论文官网地址:https://doi.org/10.1016/j.chb.2015.01.039
