Παρακαλώ χρησιμοποιήστε αυτό το αναγνωριστικό για να παραπέμψετε ή να δημιουργήσετε σύνδεσμο προς αυτό το τεκμήριο:
https://ruomo.lib.uom.gr/handle/7000/1490
Τίτλος: | Towards an Automated Recognition System for Chat-based Social Engineering Attacks in Enterprise Environments |
Συγγραφείς: | Tsinganos, Nikolaos Sakellariou, Georgios Fouliras, Panagiotis Mavridis, Ioannis |
Τύπος: | Conference Paper |
Θέματα: | FRASCATI::Engineering and technology::Electrical engineering, Electronic engineering, Information engineering |
Λέξεις-Κλειδιά: | Social Engineering Personality Persuasion Deception Speech Act |
Ημερομηνία Έκδοσης: | Αυγ-2018 |
Εκδότης: | ACM |
Τίτλος Τόμου: | ARES 2018: Proceedings of the 13th International Conference on Availability, Reliability and Security |
Επιτομή: | Increase in usage of electronic communication tools (email, IM, Skype, etc.) in enterprise environments has created new attack vectors for social engineers. Billions of people are now using electronic equipment in their everyday workflow which means billions of potential victims of Social Engineering (SE) attacks. Human is considered the weakest link in cybersecurity chain and breaking this defense is nowadays the most accessible route for malicious internal and external users. While several methods of protection have already been proposed and applied, none of these focuses on chat-based SE attacks while at the same time automation in the field is still missing. Social engineering is a complex phenomenon that requires interdisciplinary research combining technology, psychology, and linguistics. Attackers treat human personality traits as vulnerabilities and use the language as their weapon to deceive, persuade and finally manipulate the victims as they wish. Hence, a holistic approach is required to build a reliable SE attack recognition system. In this paper we present the current state-of-the-art on SE attack recognition systems, we dissect a SE attack to recognize the different stages, forms, and attributes and isolate the critical enablers that can influence a SE attack to work. Finally, we present our approach for an automated recognition system for chatbased SE attacks that is based on Personality Recognition, Influence Recognition, Deception Recognition, Speech Act and Chat History. |
URI: | https://dl.acm.org/doi/10.1145/3230833.3233277 https://ruomo.lib.uom.gr/handle/7000/1490 |
Εμφανίζεται στις Συλλογές: | Τμήμα Εφαρμοσμένης Πληροφορικής |
Αρχεία σε αυτό το Τεκμήριο:
Αρχείο | Περιγραφή | Μέγεθος | Μορφότυπος | |
---|---|---|---|---|
automated-recognition-chatv2.pdf | 824,95 kB | Adobe PDF | Προβολή/Ανοιγμα |
Αυτό το τεκμήριο προστατεύεται από Αδεια Creative Commons