Abstract
Decision-makers struggle to understand cyber-security reports, sometimes leading to inadequate cyber-attack responses. Attack modelling techniques (AMTs) can aid cyber-attack perception, but their effectiveness in improving comprehension amongst non-experts is still under-researched. Attack graphs are the most popular AMT amongst academics, while MITRE ATT&CK is becoming the most popular tool amongst practitioners. This research evaluates the effectiveness of attack graphs and MITRE ATT&CK in aiding cyber-attack perception after an attack has taken place. 157 participants were divided into expert and non-expert groups and further subdivided within respective groups. Participants underwent a test designed to demonstrate their comprehension of two cyber-attacks. Participants were also required to express personal preferences, in particular outlining which of the two AMTs was better at aiding their cyber-attack perception. Paired T-Tests reveal that both groups performed better with the attack graph compared to MITRE ATT&CK. Furthermore, both groups outlined a personal preference for the attack graph over MITRE ATT&CK.
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
