Social engineering in social networking sites : phase-based and source-based models


Autoria(s): Algarni, Abdullah; Xu, Yue
Data(s)

01/12/2013

Resumo

Social networking sites (SNSs), with their large numbers of users and large information base, seem to be perfect breeding grounds for exploiting the vulnerabilities of people, the weakest link in security. Deceiving, persuading, or influencing people to provide information or to perform an action that will benefit the attacker is known as “social engineering.” While technology-based security has been addressed by research and may be well understood, social engineering is more challenging to understand and manage, especially in new environments such as SNSs, owing to some factors of SNSs that reduce the ability of users to detect the attack and increase the ability of attackers to launch it. This work will contribute to the knowledge of social engineering by presenting the first two conceptual models of social engineering attacks in SNSs. Phase-based and source-based models are presented, along with an intensive and comprehensive overview of different aspects of social engineering threats in SNSs.

Formato

application/pdf

Identificador

http://eprints.qut.edu.au/67455/

Publicador

International Association of Computer Science and Information Technology

Relação

http://eprints.qut.edu.au/67455/1/Abdullah_Algarni_and_Yue_Xu.pdf

DOI:10.7763/IJEEEE.2013.V3.278

Algarni, Abdullah & Xu, Yue (2013) Social engineering in social networking sites : phase-based and source-based models. International Journal of e-Education, e-Business, e-Management and e-Learning, 3(6), pp. 456-462.

Direitos

Copyright 2013 International Association of Computer Science and Information Technology (IACSIT Press)

Fonte

Computer Science; Science & Engineering Faculty

Palavras-Chave #080303 Computer System Security #080609 Information Systems Management #Social engineering #Social networking sites #Information security #Trust #Deception
Tipo

Journal Article