Computer Network Defence Situational Awareness Information Requirements

MILCOM 2006 ◽  
2006 ◽  
Author(s):  
Luc Beaudoin ◽  
Michael Froh ◽  
Marc Gregoire ◽  
Julie Lefebvre
Keyword(s):  
Situational Awareness ◽  
Computer Network ◽  
Information Requirements ◽  
Awareness Information

Modelling Situation Awareness Information and System Requirements for the Mission using Goal-Oriented Task Analysis Approach

2014 ◽  
pp. 460-478
Author(s):  
Cyril Onwubiko
Keyword(s):  
Situation Awareness ◽  
Task Analysis ◽  
Situational Awareness ◽  
Computer Network ◽  
Valuable Insight ◽  
Test Scenario ◽  
Agent Oriented Software Engineering ◽  
Awareness Information ◽  
System Requirements ◽  
Security Test

This chapter describes work on modelling situational awareness information and system requirements for the mission. Developing this model based on Goal-Oriented Task Analysis representation of the mission using an Agent Oriented Software Engineering methodology advances current information requirement models because it provides valuable insight on how to effectively achieve the mission’s requirements (information, systems, networks, and IT infrastructure), and offers enhanced situational awareness within the Computer Network Defence environment. Further, the modelling approach using Secure Tropos is described, and model validation using a security test scenario is discussed.

Modelling Situation Awareness Information and System Requirements for the Mission using Goal-Oriented Task Analysis Approach

2012 ◽  
pp. 245-262
Author(s):  
Cyril Onwubiko
Keyword(s):  
Situation Awareness ◽  
Task Analysis ◽  
Situational Awareness ◽  
Computer Network ◽  
Valuable Insight ◽  
Test Scenario ◽  
Agent Oriented Software Engineering ◽  
Awareness Information ◽  
System Requirements ◽  
Security Test

This chapter describes work on modelling situational awareness information and system requirements for the mission. Developing this model based on Goal-Oriented Task Analysis representation of the mission using an Agent Oriented Software Engineering methodology advances current information requirement models because it provides valuable insight on how to effectively achieve the mission’s requirements (information, systems, networks, and IT infrastructure), and offers enhanced situational awareness within the Computer Network Defence environment. Further, the modelling approach using Secure Tropos is described, and model validation using a security test scenario is discussed.

Network Situational Awareness

2015 ◽  
pp. 334-349 ◽  
Author(s):  
Tom Fairfax ◽  
Christopher Laing ◽  
Paul Vickers
Keyword(s):  
Real Time ◽  
Network Traffic ◽  
Affective Computing ◽  
Situational Awareness ◽  
Computer Network ◽  
Emergent Properties ◽  
Self Organized ◽  
Traffic Volumes ◽  
Self Organized Criticality ◽  
Intelligent Information

This chapter treats computer networks as a cyber warfighting domain in which the maintenance of situational awareness is impaired by increasing traffic volumes and the lack of immediate sensory perception. Sonification (the use of non-speech audio for communicating information) is proposed as a viable means of monitoring a network in real time and a research agenda employing the sonification of a network's self-organized criticality within a context-aware affective computing scenario is given. The chapter views a computer network as a cyber battlespace with a particular operations spectrum and dynamics. Increasing network traffic volumes are interfering with the ability to present real-time intelligence about a network and so suggestions are made for how the context of a network might be used to help construct intelligent information infrastructures. Such a system would use affective computing principles to sonify emergent properties (such as self-organized criticality) of network traffic and behaviour to provide effective real-time situational awareness.

Designing Information Systems and Network Components for Situational Awareness

2012 ◽  
pp. 104-123
Author(s):  
Cyril Onwubiko
Keyword(s):  
Information Systems ◽  
Complex Networks ◽  
Computer Networks ◽  
Situational Awareness ◽  
Computer Network ◽  
Distributed Services ◽  
Network Applications ◽  
Systems Software ◽  
Design Requirements

Operators need situational awareness (SA) of their organisation’s computer networks and Information Systems in order to identify threats, estimate impact of attacks, evaluate risks, understand situations, and make sound decisions swiftly and accurately on what to protect against, and how to address incidents that may impact valued assets. Enterprise computer networks are often huge and complex, spanning across several WANs and supporting a number of distributed services. Understanding situations in such dynamic and complex networks is time-consuming and challenging. Operators SA are enhanced through a number of ways, one of which is through the use of situation-aware systems and technology. Designing situation-aware systems for computer network defence (CND) is difficult without understanding basic situational awareness design requirements of network applications and systems. Thus, this chapter investigates pertinent features that are foundation, essential, and beneficial for designing situation-aware systems, software, and network applications for CND.

Adaptive Visualization of Complex Networks with FocalPoint

2016 ◽  
Vol 60 (1) ◽  
pp. 233-237 ◽  
Author(s):  
Catherine Inibhunu ◽  
Scott Langevin
Keyword(s):  
Complex Networks ◽  
Cognitive Load ◽  
Situation Awareness ◽  
Operations Management ◽  
Computational Models ◽  
Situational Awareness ◽  
Computer Network ◽  
Global Network ◽  
Optimum Level ◽  
Information Structures

Maintaining situational awareness of a dynamic global computer network that consists of ten to hundreds of thousands of computers is a complex task for cyber administrators and operators looking to understand, plan and conduct operations in real time. Currently, cyber specialists must manually navigate complex networks by continuous cycles of overviews, drilldowns and manually mapping network incidents to mission impact. This is inefficient as manually maneuvering of network data is laborious, induces cognitive overload, and is prone to errors caused by distractive information resulting in important information and impacts not being seen. We are investigating “FocalPoint” an adaptive level of detail (LOD) recommender system tailored for hierarchical network information structures. FocalPoint reasons about contextual information associated with the network, user task, and user cognitive load to tune the presentation of network visualization displays to improve user performance in perception, comprehension and projection of current situational awareness. Our system is applied to two complex information constructs important to dynamic cyber network operations: network maps and attack graphs. The key innovations include: (a) context-aware automatic tailoring of complex network views, (b) multi-resolution hierarchical graph aggregation, (c) incorporation of new computational models for adaptive-decision making on user tasks, cost/benefit utility and human situation awareness, and (d) user interaction techniques to integrate recommendations into the network viewing system. Our aim is to have a direct impact on planning and operations management for complex networks by; overcoming information overload, preventing tunnel vision, reducing cognitive load, and increasing time available to focus on optimum level of details of the global network space and missions.

Review of Situational Awareness for Computer Network Defense

2012 ◽  
pp. 1-9 ◽  
Author(s):  
Cyril Onwubiko ◽  
Thomas Owens
Keyword(s):  
Computer Security ◽  
Traffic Control ◽  
Air Traffic Control ◽  
Situational Awareness ◽  
Computer Network ◽  
Computer Systems ◽  
Air Traffic ◽  
Point Of View ◽  
Network Defense ◽  
Computer Network Defense

The importance of situational awareness to air traffic control, and hence the safety and security of aircraft, is evident, demonstrable, and has been hugely significant. The main purpose of this book is to convey an understanding of the impact of situational awareness on the design of the next generation computer systems, network architectures, and platform infrastructures. The book achieves its purpose by presenting principles, methods, and applications of situational awareness for computer network defense; in doing so, it makes clear the benefits situational awareness can provide for information security, computer security and computer network defense. This book contributes to cross-multidisciplinary discussion among researchers, academia, and practitioners who are engaged objectively in sharing, contributing, and showcasing how situational awareness can be adapted to computer systems, network infrastructure designs, and architecture patterns. The goal of this chapter is to explain situational awareness for computer network defense from the point of view of its most basic foundations as a spring board to discuss how situational awareness can be relevant to computer network defense, whose operations and environment are similar to air traffic control where the application of situational awareness has been hugely successful.

Sign in / Sign up

Export Citation Format

Share Document