Improving Awareness of Social Engineering Attacks

Abstract : Social engineering is a method of attack involving the exploitation of human weakness, gullibility and ignorance. Although related techniques have existed for some time, current awareness of social engineering and its many guises is relatively low and efforts are therefore required to improve the protection of the user community. This paper begins by examining the problems posed by social engineering, and outlining some of the previous efforts that have been made to address the threat. This leads toward the discussion of a new awareness-raising website that has been specifically designed to aid users in understanding and avoiding the risks. Findings from an experimental trial involving 46 participants are used to illustrate that the system served to increase users’ understanding of threat concepts, as well as providing an engaging environment in which they would be likely to persevere with their learning.
Type de document :
Communication dans un congrès
Ronald C. Dodge; Lynn Futcher. 8th World Conference on Information Security Education (WISE), Jul 2009, Bento Gonçalves, Brazil. Springer, IFIP Advances in Information and Communication Technology, AICT-406, pp.249-256, 2013, Information Assurance and Security Education and Training. 〈10.1007/978-3-642-39377-8_29〉
Liste complète des métadonnées

Littérature citée [12 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01463649
Contributeur : Hal Ifip <>
Soumis le : jeudi 9 février 2017 - 15:45:11
Dernière modification le : jeudi 9 février 2017 - 15:51:56
Document(s) archivé(s) le : mercredi 10 mai 2017 - 14:39:07

Fichier

978-3-642-39377-8_29_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Aaron Smith, Maria Papadaki, Steven Furnell. Improving Awareness of Social Engineering Attacks. Ronald C. Dodge; Lynn Futcher. 8th World Conference on Information Security Education (WISE), Jul 2009, Bento Gonçalves, Brazil. Springer, IFIP Advances in Information and Communication Technology, AICT-406, pp.249-256, 2013, Information Assurance and Security Education and Training. 〈10.1007/978-3-642-39377-8_29〉. 〈hal-01463649〉

Partager

Métriques

Consultations de la notice

241

Téléchargements de fichiers

65