Development and validation of the Air Force Cyber Intruder Alert Testbed (CIAT)

Gregory Funke, Gregory Dye, Brett Borghetti, Vincent Mancuso, Eric Greenlee, Brent Miller, Lauren Menke, Rebecca Brown, Alex Vieane

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

1 Scopus citations

Abstract

Presently, cyber defense heavily relies on human network analysts who must detect and investigate potential suspicious activity, a demanding, fatiguing process that takes a heavy toll on human operators. Given the criticality of these operators to cyber defense, research is needed to investigate and mitigate the sources of those challenges. Currently, few cyber-focused synthetic task environments (STEs) exist, and those that do are not well suited to investigate the problems of network analysts. Therefore, a new cyber STE focused on network analysts called the Air Force Cyber Intruder Alert Testbed (CIAT) was developed. This STE was designed to emulate key functions of Enterprise-level cyber defense platforms. Specifically, CIAT simulates a network analyst environment, including an intrusion detection system, signature database, packet capture software, and network list. The purpose of this paper is to describe the development and validation of the CIAT STE.

Original languageEnglish
Title of host publicationAdvances in Human Factors in Cybersecurity - Proceedings of the AHFE International Conference on Human Factors in Cybersecurity, 2016
EditorsDenise Nicholson
PublisherSpringer-Verlag
Pages363-376
Number of pages14
ISBN (Print)9783319419312
DOIs
StatePublished - 2016
EventInternational Conference on Human Factors in Cybersecurity, 2016 - Walt Disney World, United States
Duration: Jul 27 2016Jul 31 2016

Publication series

NameAdvances in Intelligent Systems and Computing
Volume501
ISSN (Print)2194-5357

Conference

ConferenceInternational Conference on Human Factors in Cybersecurity, 2016
CountryUnited States
CityWalt Disney World
Period07/27/1607/31/16

Keywords

  • Cyber defense
  • IMPRINT
  • Network analyst
  • Synthetic task environment

Fingerprint Dive into the research topics of 'Development and validation of the Air Force Cyber Intruder Alert Testbed (CIAT)'. Together they form a unique fingerprint.

Cite this