Towards an Ontological Model Defining the Social Engineering Domain

Abstract : The human is often the weak link in the attainment of Information Security due to their susceptibility to deception and manipulation. Social Engineering refers to the exploitation of humans in order to gain unauthorised access to sensitive information. Although Social Engineering is an important branch of Information Security, the discipline is not well defined; a number of different definitions appear in the literature. Several concepts in the domain of Social Engineering are defined in this paper. This paper also presents an ontological model for Social Engineering attack based on the analysis of existing definitions and taxonomies. An ontology enables the explicit, formal representation of the entities and their inter-relationships within a domain. The aim is both to contribute towards commonly accepted domain definitions, and to develop a representative model for a Social Engineering attack. In summary, this paper provides concrete definitions for Social Engineering, Social Engineering attack and social engineer.
Type de document :
Communication dans un congrès
Kai Kimppa; Diane Whitehouse; Tiina Kuusela; Jackie Phahlamohlaka. 11th IFIP International Conference on Human Choice and Computers (HCC), Jul 2014, Turku, Finland. Springer, IFIP Advances in Information and Communication Technology, AICT-431, pp.266-279, 2014, ICT and Society. 〈10.1007/978-3-662-44208-1_22〉
Liste complète des métadonnées

Littérature citée [43 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01383064
Contributeur : Hal Ifip <>
Soumis le : mardi 18 octobre 2016 - 09:07:01
Dernière modification le : mardi 18 octobre 2016 - 09:12:51

Fichier

978-3-662-44208-1_22_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Collections

Citation

Francois Mouton, Louise Leenen, Mercia Malan, H. Venter. Towards an Ontological Model Defining the Social Engineering Domain. Kai Kimppa; Diane Whitehouse; Tiina Kuusela; Jackie Phahlamohlaka. 11th IFIP International Conference on Human Choice and Computers (HCC), Jul 2014, Turku, Finland. Springer, IFIP Advances in Information and Communication Technology, AICT-431, pp.266-279, 2014, ICT and Society. 〈10.1007/978-3-662-44208-1_22〉. 〈hal-01383064〉

Partager

Métriques

Consultations de la notice

59

Téléchargements de fichiers

129