Sandia National Laboratories have released a report, attached below, describing “threat metrics and models for characterizing threats consistently and unambiguously.” The report concludes with an interesting research recommendation:
We propose a study involving human subjects that do not have a deep background in cyber threat analysis in order to observe their methodology for investigating threat (using open data sources) and applying the proposed OTA measurement system. The purpose of the study would be to observe and explore the investigations and assessments made by novice threat analysts in their process of categorizing threat in a cyber environment. Future studies would be necessary to compare this novice approach to that of subject matter experts, such as experienced intelligence analysts.
Leave a Reply