Visible to the public Accounting for User Behavior in Predictive Cyber Security ModelsConflict Detection Enabled

TitleAccounting for User Behavior in Predictive Cyber Security Models
Publication TypePresentation
Year of Publication2015
AuthorsMohammad Noureddine, University of Illinois at Urbana-Champaign, Masooda Bashir, University of Illinois at Urbana-Champaign, Ken Keefe, University of Illinois at Urbana-Champaign, Andrew Marturano, University of Illinois at Urbana-Champaign, William H. Sanders, University of Illinois at Urbana-Champaign
KeywordsData-Driven Model-Based Decision-Making, Human and Societal Aspects of Security and Privacy, NSA SoS Lablets Materials, quantitative metrics, science of security, UIUC, usuable security

The human factor is often regarded as the weakest link in cybersecurity systems. The investigation of several security breaches reveals an important impact of human errors in exhibiting security vulnerabilities. Although security researchers have long observed the impact of human behavior, few improvements have been made in designing secure systems that are resilient to the uncertainties of the human element.

In this talk, we discuss several psychological theories that attempt to understand and influence the human behavior in the cyber world. Our goal is to use such theories in order to build predictive cyber security models that include the behavior of typical users, as well as system administrators. We then illustrate the importance of our approach by presenting a case study that incorporates models of human users. We analyze our preliminary results and discuss their challenges and our approaches to address them in the future.


Presented at the ITI Joint Trust and Security/Science of Security Seminar, October 20, 2016.

Citation Keynode-29809

Other available formats:

10202015 Noureddine Slides