Cyber science: moving from the toes to the shoulders of giants
Proceedings of the Sixth Annual Workshop on Cyber Security and Information Intelligence Research
Why is there no science in cyber science?: a panel discussion at NSPW 2010
Proceedings of the 2010 workshop on New security paradigms
Barriers to science in security
Proceedings of the 26th Annual Computer Security Applications Conference
Should security researchers experiment more and draw more inferences?
CSET'11 Proceedings of the 4th conference on Cyber security experimentation and test
| Hi-index | 0.00 |
There is little doubt among cyber security researchers about the lack of rigor underlying much of the scientific literature. The issues are manifold and are well documented. Much of the problem lies with insufficient scientific methods. Cyber security exists at the frontier between the operations of machines and the behaviors and actions of users. While we inherit the challenges of computer and social sciences, we also must face a variety of new issues that are unique to cyber security. In this paper we discuss the challenges created by the need for rigorous cyber security science. We review the methods used by other sciences and discuss how they relate to cyber security. This paper is by no means comprehensive: its purpose is to foster discussion in the community on how we can improve rigor in cyber security science.