Open this publication in new window or tab >>Show others...
2022 (English)In: Cybersecurity and Cognitive Science / [ed] Ahmed A. Moustafa, Elsevier , 2022, p. 235-265Chapter in book (Other academic)
Abstract [en]
Today, most enterprises are increasingly reliant on information technology to carry out their operations. This also entails an increasing need for cyber situational awareness—roughly, to know what is going on in the cyber domain, and thus be able to adequately respond to events such as attacks or accidents. This chapter argues that cyber situational awareness is best understood by combining three complementary points of view: the technological, the socio-cognitive, and the organizational perspectives. In addition, the chapter investigates the prospects for reasoning about adversarial actions. This part also reports on a small empirical investigation where participants in the Locked Shields cyber defense exercise were interviewed about their information needs with respect to threat actors. The chapter is concluded with a discussion regarding important challenges to be addressed along with suggestions for further research.
Place, publisher, year, edition, pages
Elsevier, 2022
Keywords
Adversarial behavior, Cognition, Cyber situational awareness, Organization, Technology
National Category
Computer and Information Sciences
Identifiers
urn:nbn:se:kth:diva-319570 (URN)10.1016/B978-0-323-90570-1.00015-2 (DOI)2-s2.0-85137911650 (Scopus ID)
Funder
Swedish Armed Forces
Note
Part of book: ISBN 978-0-323-90570-1, QC 20221214
2022-12-132022-12-132022-12-14Bibliographically approved