nach oben

Erschienen in:

2018 | OriginalPaper | Buchkapitel

From Cyber Security Activities to Collaborative Virtual Environments Practices Through the 3D CyberCOP Platform

verfasst von : Alexandre Kabil, Thierry Duval, Nora Cuppens, Gérard Le Comte, Yoran Halgand, Christophe Ponchel

Erschienen in: Information Systems Security

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Although collaborative practices between cyber organizations are well documented, managing activities within these organizations is still challenging as cyber operators tasks are very demanding and usually done individually. As human factors studies in cyber environments are still difficult to perform, tools and collaborative practices are evolving slowly and training is always required to increase teamwork efficiency. Contrary to other research fields, cyber security is not harnessing yet the capabilities of Collaborative Virtual Environments (CVE) which can be used both for immersive and interactive data visualization and serious gaming for training. In order to tackle cyber security teamwork issues, we propose a 3D CVE called the 3D Cyber Common Operational Picture, which aims at taking advantage of CVE practices to enhance cyber collaborative activities.

Based on four Security Operations Centers (SOCs) visits we have made in different organizations, we have designed a cyber collaborative activity model which has been used as a reference to design our 3D CyberCOP platform features, such as asymetrical collaboration, mutual awareness and roles specialization. Our approach can be adapted to several use cases, and we are currently developing a cyber incident analysis scenario based on an event-driven architecture, as a proof of concept.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Proxy Re-Encryption Scheme for Access Control Enforcement Delegation on Outsourced Data in Public Cloud

Nächstes Kapitel A Deep Learning Based Digital Forensic Solution to Blind Source Identification of Facebook Images

https://www.elastic.co/fr/elk-stack.

https://www.mitre.org/capabilities/cybersecurity/overview/cybersecurity-blog/ten-strategies-for-becoming-a-world-class.

http://cert-mu.govmu.org/English/Documents/White%20Papers/White%20Paper%20-%20The%20WannaCry%20Ransomware%20Attack.pdf.

https://www.us-cert.gov/ncas/alerts/TA17-132A.

Wagner Filho, J.A., Freitas, C.M., Nedel, L.: VirtualDesk: a comfortable and efficient immersive information visualization approach. Comput. Graph. Forum 37(3), 415–426 (2018). https://doi.org/10.1111/cgf.13430CrossRef

Ahrend, J.M., Jirotka, M., Jones, K.: On the collaborative practices of cyber threat intelligence analysts to develop and utilize tacit threat and defence knowledge. In: 2016 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA), pp. 1–10, June 2016. https://doi.org/10.1109/CyberSA.2016.7503279

Alotaibi, F., Furnell, S., Stengel, I., Papadaki, M.: A review of using gaming technology for cyber-security awareness. Int. J. Inf. Secur. Res. (IJISR) 6(2), 660–666 (2016)

Antunes, P., Herskovic, V., Ochoa, S.F., Pino, J.A.: Reviewing the quality of awareness support in collaborative applications. J. Syst. Softw. 89, 146–169 (2014). https://doi.org/10.1016/j.jss.2013.11.1078. https://www.sciencedirect.com/science/article/pii/S0164121213002756CrossRef

Antunes, P., Herskovic, V., Ochoa, S.F., Pino, J.A.: Structuring dimensions for collaborative systems evaluation. ACM Comput. Surv. 44(2), 8:1–8:28 (2008). https://doi.org/10.1145/2089125.2089128CrossRef

Chandler, T., et al.: Immersive analytics. In: Big Data Visual Analytics (BDVA), pp. 1–8. IEEE (2015)

Churchill, E.F., Snowdon, D.: Collaborative virtual environments: an introductory review of issues and systems. Virtual Real. 3(1), 3–15 (1998). https://doi.org/10.1007/BF01409793CrossRef

Cliquet, G., Perreira, M., Picarougne, F., Prié, Y., Vigier, T.: Towards HMD-based immersive analytics. In: Immersive Analytics Workshop, IEEE VIS 2017, Phoenix, United States, October 2017. https://hal.archives-ouvertes.fr/hal-01631306

Donalek, C., et al.: Immersive and collaborative data visualization using virtual reality platforms. In: 2014 IEEE International Conference on Big Data (Big Data), pp. 609–614, October 2014. https://doi.org/10.1109/BigData.2014.7004282

10.

Eller, C., Bittner, T., Dombois, M., Rüppel, U.: Collaborative immersive planning and training scenarios in VR. In: Smith, I.F.C., Domer, B. (eds.) Advanced Computing Strategies for Engineering, pp. 164–185. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-91635-4_9CrossRef

11.

Evesti, A., Kanstrn, T., Frantti, T.: Cybersecurity situational awareness taxonomy. In: 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA), pp. 1–8, June 2017. https://doi.org/10.1109/CyberSA.2017.8073386

12.

Gros, P., Abel, P., Dos Santos, R., Loisel, D., Trichaud, N., Paris, J.: Experimenting service-oriented 3D metaphors for managing networks using virtual reality. In: Laval Virtual-Virtual Reality International Conference, May 2000

13.

Guimaraes, V.T., Freitas, C.M.D.S., Sadre, R., Tarouco, L.M.R., Granville, L.Z.: A survey on information visualization for network and service management. IEEE Commun. Surv. Tutor. 18(1), 285–323 (2016)CrossRef

14.

Hackathorn, R., Margolis, T.: Immersive analytics: building virtual data worlds for collaborative decision support. In: 2016 Workshop on Immersive Analytics (IA), pp. 44–47, March 2016.. https://doi.org/10.1109/IMMERSIVE.2016.7932382

15.

Hámornik, B.P., Krasznay, C.: Prerequisites of virtual teamwork in security operations centers: knowledge, skills, abilities and other characteristics. Acad. Appl. Res. Mil. Public Manag. Sci. 16, 73 (2017)

16.

Hui, P., et al.: Towards efficient collaboration in cyber security. In: 2010 International Symposium on Collaborative Technologies and Systems, pp. 489–498, May 2010. https://doi.org/10.1109/CTS.2010.5478473

17.

Inoue, D., Eto, M., Suzuki, K., Suzuki, M., Nakao, K.: DAEDALUS-VIZ: novel real-time 3D visualization for darknet monitoring-based alert system, VizSec 2012, pp. 72–79. ACM, New York (2012). https://doi.org/10.1145/2379690.2379700

18.

Kabil, A., Thierry, D., Nora, C., Gerard, L., Yoran, H., Christophe, P.: Why should we use 3D collaborative virtual environments (3DCVE) for cyber security? In: 2018 IEEE Third VR International Workshop on Collaborative Virtual Environments (3DCVE), March 2018

19.

Kanstrn, T., Evesti, A.: A study on the state of practice in security situational awareness. In: 2016 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C), pp. 69–76, August 2016. https://doi.org/10.1109/QRS-C.2016.14

20.

Latvala, O.M., et al.: Visualizing network events in a muggle friendly way. In: 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA), pp. 1–4, June 2017. https://doi.org/10.1109/CyberSA.2017.8073400

21.

Le Chénéchal, M., Chalmé, S., Duval, T., Royan, J., Gouranton, V., Arnaldi, B.: Toward an enhanced mutual awareness in asymmetric CVE. In: Proceedings of International Conference on Collaboration Technologies and Systems (CTS 2015) (2015)

22.

Mäses, S., Randmann, L., Maennel, O., Lorenz, B.: Stenmap: framework for evaluating cybersecurity-related skills based on computer simulations. In: Zaphiris, P., Ioannou, A. (eds.) LCT 2018, Part II. LNCS, vol. 10925, pp. 492–504. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-91152-6_38CrossRef

23.

McKenna, S., Staheli, D., Meyer, M.: Unlocking user-centered design methods for building cyber security visualizations. In: 2015 IEEE Symposium on Visualization for Cyber Security (VizSec), pp. 1–8. IEEE (2015)

24.

Michel, M.C.K., Helmick, N.P., Mayron, L.M.: Cognitive cyber situational awareness using virtual worlds. In: 2011 IEEE International Multi-Disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support (CogSIMA), pp. 179–182, February 2011. https://doi.org/10.1109/COGSIMA.2011.5753440

25.

Newhouse, W., Keith, S., Scribner, B., Witte, G.: National initiative for cybersecurity education (NICE) cybersecurity workforce framework. NIST Spec. Publ. 800, 181 (2017)

26.

Petersen, K.L., Tjalve, V.S.: Intelligence expertise in the age of information sharing: publicprivate collection and its challenges to democratic control and accountability. Intell. Natl. Secur. 33(1), 21–35 (2018). https://doi.org/10.1080/02684527.2017.1316956CrossRef

27.

Pirker, J., Gütl, C.: Virtual worlds for 3D visualizations. In: 11th International Conference on Intelligent Environments (Workshop), pp. 265–272 (2015)

28.

Rajivan, P., Cooke, N.: Impact of team collaboration on cybersecurity situational awareness. In: Liu, P., Jajodia, S., Wang, C. (eds.) Theory and Models for Cyber Situation Awareness. LNCS, vol. 10030, pp. 203–226. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-61152-5_8CrossRef

29.

Renaud, K., Flowerday, S.: Contemplating human-centred security & privacy research: suggesting future directions. J. Inf. Secur. Appl. 34, 76–81 (2017). https://doi.org/10.1016/j.jisa.2017.05.006. http://www.sciencedirect.com/science/article/pii/S2214212617302387. Human-Centred Cyber SecurityCrossRef

30.

Richards, D., Taylor, M.: A comparison of learning gains when using a 2D simulation tool versus a 3D virtual world. Comput. Educ. 86(1), 157–171 (2015). https://doi.org/10.1016/j.compedu.2015.03.009CrossRef

31.

Robinson, M., Jones, K., Janicke, H., Maglaras, L.: Developing Cyber Peacekeeping: Observation. Monitoring and Reporting, ArXiv e-prints, June 2018

32.

Sethi, A., Wills, G.: Expert-interviews led analysis of EEVi - a model for effective visualization in cyber-security. In: 2017 IEEE Symposium on Visualization for Cyber Security (VizSec), pp. 1–8, October 2017. https://doi.org/10.1109/VIZSEC.2017.8062195

33.

Shen, C., Ho, J., Ly, P.T.M., Kuo, T.: Behavioural intentions of using virtual reality in learning: perspectives of acceptance of information technology and learning style. Virtual Real. (2018). https://doi.org/10.1007/s10055-018-0348-1

34.

Shiravi, H., Shiravi, A., Ghorbani, A.A.: A survey of visualization systems for network security. IEEE Trans. Vis. Comput. Graph. 18(8), 1313–1329 (2012)CrossRef

35.

Soares, A.G., et al.: A review of ways and strategies on how to collaborate in information visualization applications. In: 2016 20th International Conference Information Visualisation (IV), pp. 81–87, July 2016. https://doi.org/10.1109/IV.2016.69

36.

von Solms, R., van Niekerk, J.: From information security to cyber security. Comput. Secur. 38, 97–102 (2013). Cybercrime in the Digital EconomyCrossRef

37.

Staheli, D., et al.: Visualization evaluation for cyber security: trends and future directions, VizSec 2014, pp. 49–56. ACM, New York (2014). https://doi.org/10.1145/2671491.2671492

38.

Sundaramurthy, S.C., McHugh, J., Ou, X., Wesch, M., Bardas, A.G., Rajagopalan, S.R.: Turning contradictions into innovations or: How we learned to stop whining and improve security operations. In: Twelfth Symposium on Usable Privacy and Security (SOUPS 2016), Denver, CO, pp. 237–251. USENIX Association (2016). https://www.usenix.org/conference/soups2016/technical-sessions/presentation/sundaramurthy

39.

Takahashi, T., Kadobayashi, Y., Nakao, K.: Toward global cybersecurity collaboration: cybersecurity operation activity model. In: Proceedings of ITU Kaleidoscope 2011: The Fully Networked Human? - Innovations for Future Networks and Services (K-2011), pp. 1–8, December 2011

40.

Tcha-Tokey, K., Christmann, O., Loup-Escande, E., Richir, S.: Proposition and validation of a questionnaire to measure the user experience in immersive virtual environments. Int. J. Virtual Real. 16(1), 33–48 (2016). https://hal.archives-ouvertes.fr/hal-01404497

41.

Zhong, Z., et al.: A user-centered multi-space collaborative visual analysis for cyber security. Chin. J. Electron. 27, 910–919 (2018)CrossRef

42.

Zhu, H.: From WYSIWIS to WISINWIS: role-based collaboration. In: 2004 IEEE International Conference on Systems, Man and Cybernetics (IEEE Cat. No. 04CH37583). vol. 6, pp. 5441–5446, October 2004. https://doi.org/10.1109/ICSMC.2004.1401059

Titel: From Cyber Security Activities to Collaborative Virtual Environments Practices Through the 3D CyberCOP Platform
verfasst von: Alexandre Kabil
Thierry Duval
Nora Cuppens
Gérard Le Comte
Yoran Halgand
Christophe Ponchel
Verlag: Springer International Publishing
Buch: Information Systems Security
Print ISBN: 978-3-030-05170-9

Electronic ISBN: 978-3-030-05171-6

Copyright-Jahr: 2018
DOI: https://doi.org/10.1007/978-3-030-05171-6_14

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner