Exploiting Base Rate Neglect to Disrupt and Distract Cyber Attackers
| dc.contributor.author | Bhat, K Raghav | |
| dc.contributor.author | Gutzwiller, Robert | |
| dc.contributor.author | Guarino, Sean | |
| dc.contributor.author | Lynn, Spencer | |
| dc.contributor.author | Clegg, Benjamin | |
| dc.contributor.author | Hypolite, Joel | |
| dc.contributor.author | Sieffert, Michael | |
| dc.contributor.author | Locasto, Michael | |
| dc.contributor.author | Kelle, David | |
| dc.contributor.author | Slocum, Max | |
| dc.contributor.author | Wu, Curt | |
| dc.contributor.author | Harrison, Scott | |
| dc.contributor.author | Revelle, Matthew | |
| dc.contributor.author | Latiff, Susan | |
| dc.date.accessioned | 2025-12-23T16:35:33Z | |
| dc.date.available | 2025-12-23T16:35:33Z | |
| dc.date.issued | 2026-01-06 | |
| dc.description.abstract | Oppositional human factors (OHF) seeks to exploit tendencies in human thinking to disrupt cyber attackers. One tendency is base rate neglect (BRN), where individuals overlook the likelihood of an event during reasoning, and instead base judgements on salient surface details. An expert sample of cyber red teamers completed cognitive bias survey measures, followed by missions in a cyber range. In the range, features on a server consistent with a vulnerability but out of context (extremely low base rate) were used to test whether these experts would ignore such base rates. BRN was found, including meaningful, significant performance reductions, suggesting a real, valid path for OHF techniques. Further, this approach can be employed even where bias susceptibility predictions for an attacker are unavailable. | |
| dc.format.extent | 10 pages | |
| dc.identifier.doi | https://doi.org/10.24251/HICSS.2026.149 | |
| dc.identifier.isbn | 978-0-9981331-9-5 | |
| dc.identifier.other | 9546c605-6b79-4c2a-a906-f529f24ed3b7 | |
| dc.identifier.uri | https://hdl.handle.net/10125/111543 | |
| dc.language.iso | eng | |
| dc.relation.ispartof | Proceedings of the 59th Hawaii International Conference on System Sciences | |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 International | |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc-nd/4.0/ | |
| dc.subject | Cyber Deception and Cyberpsychology for Defense | |
| dc.subject | cognitive bias | |
| dc.subject | cybersecurity | |
| dc.subject | decision making | |
| dc.subject | human factors | |
| dc.subject | oppositional human factors | |
| dc.title | Exploiting Base Rate Neglect to Disrupt and Distract Cyber Attackers | |
| dc.type | Conference Paper | |
| dc.type.dcmi | Text | |
| prism.startingpage | 1239 |
Files
Original bundle
1 - 1 of 1