Operational decision-making for cyber operations: In Search of a Model
The decision-making behind cyber operations is complex. Dynamics around issues such as cyber arsenal management, target assessment, and the timing of dropping a destructive payload are still ill-understood. Yet, limited published research has thus far explored formal theoretic constructs for better understanding decisionmaking in cyber operations. Multiple models may offer utility to understand and explain the courses of action through which state cyber missions are executed, including conduct or restraint of cyber effects operations against target systems and networks. This paper evaluates four models - surprise model, duelist model, mating- choice model, and the Black-Scholes model. Each model offers specific advantages, and suffers characteristic drawbacks; and while these models differ in application and complexity each may provide insights into how the unique nature of cyber operations impact the decision dynamics of cyber conflict.