Sonification to support the monitoring tasks of security operations centres
Sonification (the representation of data as sound) may offer a solution to some of the network-security monitoring challenges faced in security operations centres (SOCs). Prior work has shown that sonification can present network-security information to humans effectively, and indicated that securit...
| Hoofdauteurs: | , , , , |
|---|---|
| Formaat: | Journal article |
| Gepubliceerd in: |
Institute of Electrical and Electronics Engineers
2019
|
| _version_ | 1826290510594048000 |
|---|---|
| author | Axon, L Happa, J Janse Van Rensburg, A Goldsmith, M Creese, S |
| author_facet | Axon, L Happa, J Janse Van Rensburg, A Goldsmith, M Creese, S |
| author_sort | Axon, L |
| collection | OXFORD |
| description | Sonification (the representation of data as sound) may offer a solution to some of the network-security monitoring challenges faced in security operations centres (SOCs). Prior work has shown that sonification can present network-security information to humans effectively, and indicated that security practitioners foresee potential for sonification to aid in scenarios related to their work. The use of sonification by security practitioners in tasks relevant to SOCs has not been examined, however. To address this gap, we assessed the use of sonification by security practitioners in network-security monitoring tasks in an experimental setting. We report on the results of a study in which we compared the performance of security practitioners using a Security Information and Event Management (SIEM) tool with their performance using a SIEM tool that incorporated sonification, in a primary and a non-primary monitoring task. In both tasks, a number of aspects of the monitoring performance of participants were significantly improved when sonification was used. Our results support the potential for sonification to aid in SOC tasks, and indicate a need to validate the utility of sonification systems by running them in operational SOCs. |
| first_indexed | 2024-03-07T02:45:18Z |
| format | Journal article |
| id | oxford-uuid:abda0d07-c8d2-46e7-9b7f-b861d0d6583e |
| institution | University of Oxford |
| last_indexed | 2024-03-07T02:45:18Z |
| publishDate | 2019 |
| publisher | Institute of Electrical and Electronics Engineers |
| record_format | dspace |
| spelling | oxford-uuid:abda0d07-c8d2-46e7-9b7f-b861d0d6583e2022-03-27T03:24:46ZSonification to support the monitoring tasks of security operations centresJournal articlehttp://purl.org/coar/resource_type/c_dcae04bcuuid:abda0d07-c8d2-46e7-9b7f-b861d0d6583eSymplectic Elements at OxfordInstitute of Electrical and Electronics Engineers2019Axon, LHappa, JJanse Van Rensburg, AGoldsmith, MCreese, SSonification (the representation of data as sound) may offer a solution to some of the network-security monitoring challenges faced in security operations centres (SOCs). Prior work has shown that sonification can present network-security information to humans effectively, and indicated that security practitioners foresee potential for sonification to aid in scenarios related to their work. The use of sonification by security practitioners in tasks relevant to SOCs has not been examined, however. To address this gap, we assessed the use of sonification by security practitioners in network-security monitoring tasks in an experimental setting. We report on the results of a study in which we compared the performance of security practitioners using a Security Information and Event Management (SIEM) tool with their performance using a SIEM tool that incorporated sonification, in a primary and a non-primary monitoring task. In both tasks, a number of aspects of the monitoring performance of participants were significantly improved when sonification was used. Our results support the potential for sonification to aid in SOC tasks, and indicate a need to validate the utility of sonification systems by running them in operational SOCs. |
| spellingShingle | Axon, L Happa, J Janse Van Rensburg, A Goldsmith, M Creese, S Sonification to support the monitoring tasks of security operations centres |
| title | Sonification to support the monitoring tasks of security operations centres |
| title_full | Sonification to support the monitoring tasks of security operations centres |
| title_fullStr | Sonification to support the monitoring tasks of security operations centres |
| title_full_unstemmed | Sonification to support the monitoring tasks of security operations centres |
| title_short | Sonification to support the monitoring tasks of security operations centres |
| title_sort | sonification to support the monitoring tasks of security operations centres |
| work_keys_str_mv | AT axonl sonificationtosupportthemonitoringtasksofsecurityoperationscentres AT happaj sonificationtosupportthemonitoringtasksofsecurityoperationscentres AT jansevanrensburga sonificationtosupportthemonitoringtasksofsecurityoperationscentres AT goldsmithm sonificationtosupportthemonitoringtasksofsecurityoperationscentres AT creeses sonificationtosupportthemonitoringtasksofsecurityoperationscentres |