UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

Review of human decision-making during computer security incident analysis

Spring, JM; Illari, P; (2021) Review of human decision-making during computer security incident analysis. Digital Threats: Research and Practice , 2 (2) , Article 11. 10.1145/3427787. Green open access

[thumbnail of Illari_ Review of human decision-making during computer security incident analysis_VoR.pdf]
Preview
 Text
Illari_ Review of human decision-making during computer security incident analysis_VoR.pdf - Published Version
Download (689kB) | Preview

Abstract

We review practical advice on decision-making during computer security incident response. Scope includes standards from the IETF, ISO, FIRST, and the US intelligence community. To focus on human decision-making, the scope is the evidence collection, analysis, and reporting phases of response. The results indicate both strengths and gaps. A strength is available advice on how to accomplish many specific tasks. However, there is little guidance on how to prioritize tasks in limited time or how to interpret, generalize, and convincingly report results. Future work should focus on these gaps in explication and specification of decision-making during incident analysis.

Type: Article
Title: Review of human decision-making during computer security incident analysis
Open access status: An open access version is available from UCL Discovery
DOI: 10.1145/3427787
Publisher version: https://doi.org/10.1145/3427787
Language: English
Additional information: © 2021 Copyright held by the owner/author(s). This is an Open Access article published under the terms of the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/).
Keywords: Security standards, sociology of science, cybersecurity
UCL classification: UCL
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Maths and Physical Sciences
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Maths and Physical Sciences > Dept of Science and Technology Studies
URI: https://discovery.ucl.ac.uk/id/eprint/10130207
Downloads since deposit
126Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item