Are Cyber Attackers Thinking Fast and Slow? Exploratory Analysis Reveals Evidence of Decision-Making Biases in Red Teamers-Reference-Cited by-同舟云学术

Are Cyber Attackers Thinking Fast and Slow? Exploratory Analysis Reveals Evidence of Decision-Making Biases in Red Teamers

Published:2019-11 Issue:1 Volume:63 Page:427-431
ISSN:2169-5067
Container-title:Proceedings of the Human Factors and Ergonomics Society Annual Meeting
language:en
Short-container-title:Proceedings of the Human Factors and Ergonomics Society Annual Meeting

Author:

Gutzwiller Robert S.¹,Ferguson-Walter Kimberly J.²,Fugate Sunny J.³

Affiliation:

1. Arizona State University

2. Laboratory for Advanced Cybersecurity Research

3. Naval Information Warfare Center

Abstract

We report on whether cyber attacker behaviors contain decision making biases. Data from a prior experiment were analyzed in an exploratory fashion, making use of think-aloud responses from a small group of red teamers. The analysis provided new observational evidence of traditional decision-making biases in red team behaviors (confirmation bias, anchoring, and take-the-best heuristic use). These biases may disrupt red team decisions and goals, and simultaneously increase their risk of detection. Interestingly, at least part of the bias induction may be related to the use of cyber deception. Future directions include the development of behavioral measurement techniques for these and additional cognitive biases in cyber operators, examining the role of attacker traits, and identifying the conditions where biases can be induced successfully in experimental conditions.

Publisher

SAGE Publications

Subject

General Medicine,General Chemistry

Link

http://journals.sagepub.com/doi/pdf/10.1177/1071181319631096

Reference26 articles.

1. Effects of Gain/Loss Framing in Cyber Defense Decision-Making

2. The Real Work of Computer Network Defense Analysts

3. Achieving Cyber Defense Situational Awareness: A Cognitive Task Analysis of Information Assurance Analysts

4. Peering Into the Bias Blind Spot: People’s Assessments of Bias in Themselves and Others

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Exploratory Analysis of Decision-Making Biases of Professional Red Teamers in a Cyber-Attack Dataset;Journal of Cognitive Engineering and Decision Making;2023-11-28

2. Finding an Optimal Set of Static Analyzers To Detect Software Vulnerabilities;2023 IEEE International Conference on Software Maintenance and Evolution (ICSME);2023-10-01

3. Frustration, Confusion, Surprise, Confidence, And Self-Doubt: Cyber Operators’ Affects During A Realistic Experiment;Proceedings of the Human Factors and Ergonomics Society Annual Meeting;2023-09

4. Understanding decision making in security operations centres: building the case for cyber deception technology;Frontiers in Psychology;2023-05-23

5. Investigating Cyber Attacker Team Cognition;Proceedings of the Human Factors and Ergonomics Society Annual Meeting;2022-09