From Cyber Security Activities to Collaborative Virtual Environments Practices through the 3D CyberCOP Platform

Alexandre Kabil 1 Thierry Duval 1, 2 Nora Cuppens 3, 4 Gérard Le Comte 5 Yoran Halgand 6 Christophe Ponchel 7
1 Lab-STICC_IMTA_CID_IHSEV
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
3 Lab-STICC_IMTA_CID_IRIS
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
Abstract : Although collaborative practices between cyber organizations are well documented, managing activities within these organizations is still challenging as cyber operators tasks are very demanding and usually done individually. As human factors studies in cyber environments are still difficult to perform, tools and collaborative practices are evolving slowly and training is always required to increase teamwork efficiency. Contrary to other research fields, cyber security is not harnessing yet the capabilities of Collaborative Virtual Environments (CVE) which can be used both for immersive and interactive data visualization and serious gaming for training. In order to tackle cyber security teamwork issues, we propose a 3D CVE called the 3D Cyber Common Operational Picture, which aims at taking advantage of CVE practices to enhance cyber collaborative activities. Based on four Security Operations Centers (SOCs) visits we have made in different organizations, we have designed a cyber collaborative activity model which has been used as a reference to design our 3D CyberCOP platform features, such as asymetrical collaboration, mutual awareness and roles specialization. Our approach can be adapted to several use cases, and we are currently developing a cyber incident analysis scenario based on an event-driven architecture, as a proof of concept.
Type de document :
Communication dans un congrès
International Conference on Information Systems Security, Dec 2018, Bengaluru, India. pp.272-287, 2018, proceedings of ICISS 2018, 14th International Conference on Information Systems Security
Liste complète des métadonnées

https://hal.archives-ouvertes.fr/hal-01892161
Contributeur : Thierry Duval <>
Soumis le : mercredi 10 octobre 2018 - 13:49:09
Dernière modification le : mardi 26 février 2019 - 11:38:32
Document(s) archivé(s) le : vendredi 11 janvier 2019 - 16:07:15

Fichier

main.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01892161, version 1

Citation

Alexandre Kabil, Thierry Duval, Nora Cuppens, Gérard Le Comte, Yoran Halgand, et al.. From Cyber Security Activities to Collaborative Virtual Environments Practices through the 3D CyberCOP Platform. International Conference on Information Systems Security, Dec 2018, Bengaluru, India. pp.272-287, 2018, proceedings of ICISS 2018, 14th International Conference on Information Systems Security. 〈hal-01892161〉

Partager

Métriques

Consultations de la notice

224

Téléchargements de fichiers

136