Coordinated displays to assist cyber defenders

Alex Vieane; Gregory Funke; Vincent Mancuso; Eric Greenlee; Gregory Dye; Brett Borghetti; Brent Miller; Lauren Menke; Rebecca Brown

doi:10.1177/1541931213601078

Coordinated displays to assist cyber defenders

Alex Vieane, Gregory Funke, Vincent Mancuso, Eric Greenlee, Gregory Dye, Brett Borghetti, Brent Miller, Lauren Menke, Rebecca Brown

Psychological Sciences

Research output: Contribution to journal › Conference article › peer-review

7 Scopus citations

Abstract

Cyber network analysts must gather evidence from multiple sources and ultimately decide whether or not suspicious activity represents a threat to network security. Information relevant to this task is usually presented in an uncoordinated fashion, meaning analysts must manually correlate data across multiple databases. The current experiment examined whether analyst performance efficiency would be improved by coordinated displays, i.e., displays that automatically link relevant information across databases. We found that coordinated displays nearly doubled performance efficiency, in contrast to the standard uncoordinated displays, and coordinated displays resulted in a modest increase in threat detections. These results demonstrate that the benefits of coordinated displays are significant enough to recommend their inclusion in future cyber defense software.

Original language	English
Pages (from-to)	344-348
Number of pages	5
Journal	Proceedings of the Human Factors and Ergonomics Society
DOIs	https://doi.org/10.1177/1541931213601078
State	Published - 2016
Event	Human Factors and Ergonomics Society 2016 International Annual Meeting, HFES 2016 - Washington, United States Duration: Sep 19 2016 → Sep 23 2016

Access to Document

10.1177/1541931213601078

Cite this

@article{ce22814d3d5248fdb192c00682c3df6d,

title = "Coordinated displays to assist cyber defenders",

abstract = "Cyber network analysts must gather evidence from multiple sources and ultimately decide whether or not suspicious activity represents a threat to network security. Information relevant to this task is usually presented in an uncoordinated fashion, meaning analysts must manually correlate data across multiple databases. The current experiment examined whether analyst performance efficiency would be improved by coordinated displays, i.e., displays that automatically link relevant information across databases. We found that coordinated displays nearly doubled performance efficiency, in contrast to the standard uncoordinated displays, and coordinated displays resulted in a modest increase in threat detections. These results demonstrate that the benefits of coordinated displays are significant enough to recommend their inclusion in future cyber defense software.",

author = "Alex Vieane and Gregory Funke and Vincent Mancuso and Eric Greenlee and Gregory Dye and Brett Borghetti and Brent Miller and Lauren Menke and Rebecca Brown",

year = "2016",

doi = "10.1177/1541931213601078",

language = "English",

pages = "344--348",

journal = "Proceedings of the Human Factors and Ergonomics Society",

issn = "1071-1813",

}

TY - JOUR

T1 - Coordinated displays to assist cyber defenders

AU - Vieane, Alex

AU - Funke, Gregory

AU - Mancuso, Vincent

AU - Greenlee, Eric

AU - Dye, Gregory

AU - Borghetti, Brett

AU - Miller, Brent

AU - Menke, Lauren

AU - Brown, Rebecca

PY - 2016

Y1 - 2016

N2 - Cyber network analysts must gather evidence from multiple sources and ultimately decide whether or not suspicious activity represents a threat to network security. Information relevant to this task is usually presented in an uncoordinated fashion, meaning analysts must manually correlate data across multiple databases. The current experiment examined whether analyst performance efficiency would be improved by coordinated displays, i.e., displays that automatically link relevant information across databases. We found that coordinated displays nearly doubled performance efficiency, in contrast to the standard uncoordinated displays, and coordinated displays resulted in a modest increase in threat detections. These results demonstrate that the benefits of coordinated displays are significant enough to recommend their inclusion in future cyber defense software.

AB - Cyber network analysts must gather evidence from multiple sources and ultimately decide whether or not suspicious activity represents a threat to network security. Information relevant to this task is usually presented in an uncoordinated fashion, meaning analysts must manually correlate data across multiple databases. The current experiment examined whether analyst performance efficiency would be improved by coordinated displays, i.e., displays that automatically link relevant information across databases. We found that coordinated displays nearly doubled performance efficiency, in contrast to the standard uncoordinated displays, and coordinated displays resulted in a modest increase in threat detections. These results demonstrate that the benefits of coordinated displays are significant enough to recommend their inclusion in future cyber defense software.

UR - http://www.scopus.com/inward/record.url?scp=84986332338&partnerID=8YFLogxK

U2 - 10.1177/1541931213601078

DO - 10.1177/1541931213601078

M3 - Conference article

AN - SCOPUS:84986332338

SN - 1071-1813

SP - 344

EP - 348

JO - Proceedings of the Human Factors and Ergonomics Society

JF - Proceedings of the Human Factors and Ergonomics Society

Y2 - 19 September 2016 through 23 September 2016

ER -

Coordinated displays to assist cyber defenders

Abstract

Access to Document

Other files and links

Fingerprint

Cite this