Towards an Ontological Model Defining the Social Engineering Domain
作者: Francois Mouton , Louise Leenen , Mercia M. Malan , H. S. Venter
DOI: 10.1007/978-3-662-44208-1_22
关键词:
摘要: The human is often the weak link in attainment of Information Security due to their susceptibility deception and manipulation. Social Engineering refers exploitation humans order gain unauthorised access sensitive information. Although an important branch Security, discipline not well defined; a number different definitions appear literature. Several concepts domain are defined this paper. This paper also presents ontological model for attack based on analysis existing taxonomies. An ontology enables explicit, formal representation entities inter-relationships within domain. aim both contribute towards commonly accepted definitions, develop representative attack. In summary, provides concrete Engineering, social engineer.
springer.com
sci-hub.st 参考文章(37)
Matthew Braverman, BEHAVIOURAL MODELLING OF SOCIAL ENGINEERING-BASED MALICIOUS SOFTWARE ,(2006)
Lech Janczewski, Koteswara Ivaturi, A Taxonomy for Social Engineering attacks ,(2011)
Mercia M. Malan, Francois Mouton, Hein S. Venter, Development of cognitive functioning psychological measures for the SEADM HAISA. pp. 40- 51 ,(2012)
Matthew Spinapolice, Mitigating the risk of social engineering attacks ,(2011)
Per Backlund, Rose-Mharie Åhlfeldt, Eva Söderström, Benkt Wangler, Security Issues in Health Care Process Integration ? a Research-in-Progress Report. EMOI-INTEROP. ,(2005)
Lena Laribee, Development of Methodical Social Engineering Taxonomy Project Monterey, California. Naval Postgraduate School. ,(2006)
Toby Skandier, Quentin Docter, Emmett Dulaney, CompTIA A+ Complete Study Guide ,(2006)
John J Lenkart, The Vulnerability of Social Networking Media and the Insider Threat: New Eyes for Bad Guys Naval Postgraduate School (U.S.). Center for Homeland Defense and Security; Naval Postgraduate School (U.S.). ,(2011)
Christopher Hadnagy, Social engineering : the art of human hacking Wiley. ,(2011)
Michael Erbschloe, Trojans, Worms, and Spyware: A Computer Security Professional's Guide to Malicious Code ,(2004)