Knowledge and Organization: A Social-Practice Perspective
Organization Science
An Empirical Approach to Modeling Uncertainty in Intrusion Analysis
ACSAC '09 Proceedings of the 2009 Annual Computer Security Applications Conference
| Hi-index | 0.00 |
Current tools and solutions to handle incident response and forensics focus only on one piece of evidence, doing very little towards presenting the big picture. My PhD dissertation will focus on developing analytical tools that can automate repeated tasks whenever possible and also be able to connect the dots among multiple data sources. The tools of my research will focus more on reducing the time incident responders spend on mundane tasks through automation also by providing data in a more abstract and context specific manner. Such presentation will be more useful in constructing the intrusion scenario than when it is presented raw. Another challenge security researchers face today is validating their research ideas on real-world data. My PhD work will focus on applying anthropological methods to identify the tacit knowledge of incident responders and make them explicit through tools, processes, and publications.