Accession Number:

AD1111902

Title:

Lies, Pseudoscience, and Hype in the Cybersecurity of Human Factors

Descriptive Note:

Technical Report

Corporate Author:

CARNEGIE-MELLON UNIV PITTSBURGH PA PITTSBURGH United States

Personal Author(s):

Report Date:

2020-01-01

Pagination or Media Count:

6.0

Abstract:

Security experts have a variety of specialties. Event monitoring, Incident management, Situational awareness, Vulnerability management. Although the details change, systems used by experts almost never have the usability for the expert considered. Intelligibility of measurements. Hinders inter-organizational communication, especially experts across sectors. Consistency of human scoring. Usability of the scoring system, gets into issues of language, non-native English speakers, etc. Timely delivery of scoring. For example, for CVSS humans need to create the scores.

Subject Categories:

  • Computer Systems Management and Standards

Distribution Statement:

APPROVED FOR PUBLIC RELEASE