Skip to Main content Skip to Navigation
Theses

CyberCOP 3D : visualisation 3D interactive et collaborative de l'état de sécurité d'un système informatique

Alexandre Kabil 1, 2
1 Lab-STICC_IMTA_CID_IHSEV
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
Abstract : The aim of this thesis was to study the use of Collaborative Virtual Environments (CVE) for the analysis of the state of security of computer systems, also called Cyber Situational Awareness (CSA). After studying CSA’s models and tools, we have had the opportunity to visit the Security Operations Centers (SOCs) of four industrial partners of the CyberCNI chair, in order to better understand the needs and expectations of cyber analysts. These visits were made as part of a collaborative activity analysis protocol and have allowed us to propose a model, the 3D Cyber-COP. Based on this model and a model of the WannaCry ransomware, we have developed a CVE and a simplified scenario engine that allows users to design their own alert analysis scenarios. We have also performed a usability evaluation of a virtual environment for alert analysis, with a panel of novice users.
Document type :
Theses
Complete list of metadatas

Cited literature [144 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-02891934
Contributor : Abes Star :  Contact
Submitted on : Tuesday, July 7, 2020 - 11:19:21 AM
Last modification on : Friday, September 25, 2020 - 3:36:05 AM

File

2019IMTA0166_Kabil-Alexandre_D...
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-02891934, version 1

Citation

Alexandre Kabil. CyberCOP 3D : visualisation 3D interactive et collaborative de l'état de sécurité d'un système informatique. Synthèse d'image et réalité virtuelle [cs.GR]. Ecole nationale supérieure Mines-Télécom Atlantique, 2019. Français. ⟨NNT : 2019IMTA0166⟩. ⟨tel-02891934⟩

Share

Metrics

Record views

73

Files downloads

52