Towards an Ontological Model Defining the Social Engineering Domain

被引：0

作者：

Mouton, Francois ^{[1
]}

Leenen, Louise ^{[1
]}

Malan, Mercia M. ^{[2
]}

Venter, H. S. ^{[3
]}

机构：

[1] Council Ind & Sci Res, Pretoria, South Africa

[2] Univ Pretoria, Informat & Comp Secur Architecture Res Grp, Pretoria, South Africa

[3] Univ Pretoria, Dept Comp Sci, Pretoria, South Africa

来源：

ICT AND SOCIETY | 2014年 / 431卷

关键词：

Bidirectional Communication; Compliance Principles; Indirect Communication; Ontology; Social Engineering Attack; Social Engineering Attack Ontology; Social Engineering Definitions; Social Engineering History; Taxonomy; Unidirectional Communication;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The human is often the weak link in the attainment of Information Security due to their susceptibility to deception and manipulation. Social Engineering refers to the exploitation of humans in order to gain unauthorised access to sensitive information. Although Social Engineering is an important branch of Information Security, the discipline is not well defined; a number of different definitions appear in the literature. Several concepts in the domain of Social Engineering are defined in this paper. This paper also presents an ontological model for Social Engineering attack based on the analysis of existing definitions and taxonomies. An ontology enables the explicit, formal representation of the entities and their inter-relationships within a domain. The aim is both to contribute towards commonly accepted domain definitions, and to develop a representative model for a Social Engineering attack. In summary, this paper provides concrete definitions for Social Engineering, Social Engineering attack and social engineer.

引用

页码：266 / 279

页数：14

共 50 条

[31] Social Engineering: Towards A Holistic Solution
Jansson, K.
von Solms, R.
PROCEEDINGS OF THE SOUTH AFRICAN INFORMATION SECURITY MULTI-CONFERENCE, 2010, : 23 - 34
[32] Towards Ontological Blending
Hois, Joana
Kutz, Oliver
Mossakowski, Till
Bateman, John
ARTIFICIAL INTELLIGENCE: METHODOLOGY, SYSTEMS, AND APPLICATIONS, AIMSA 2010, 2010, 6304 : 263 - 264
[33] Towards a Methodology for Reusable Ontology Engineering: Application to the Process Engineering Domain
Trokanas, Nikolaos
Koo, Linsey
Cecelja, Franjo
28TH EUROPEAN SYMPOSIUM ON COMPUTER AIDED PROCESS ENGINEERING, 2018, 43 : 471 - 476
[34] ENLARGED EMPIRICAL ECONOMICS AND THE QUEST FOR VALIDITY: FACING THE ONTOLOGICAL INTRICACIES OF THE SOCIAL DOMAIN
Caamano-Alegre, Jose
Caamano-Alegre, Maria
JOURNAL OF INSTITUTIONAL STUDIES, 2019, 11 (01) : 20 - 40
[35] Towards defining the complement of mammalian WFDC-domain-containing proteins
Bingle, Colin D.
BIOCHEMICAL SOCIETY TRANSACTIONS, 2011, 39 : 1393 - 1397
[36] Evolution of the Automotive Reference Architecture Model towards a Domain-Specific Systems Engineering Approach
Polanec, Katharina
Gross, Jounes-Alexander
Brankovic, Boris
Neureiter, Christian
2022 IEEE 27TH INTERNATIONAL CONFERENCE ON EMERGING TECHNOLOGIES AND FACTORY AUTOMATION (ETFA), 2022,
[37] Defining Process Performance Indicators: An Ontological Approach
del-Rio-Ortega, Adela
Resinas, Manuel
Ruiz-Cortes, Antonio
ON THE MOVE TO MEANINGFUL INTERNET SYSTEMS: OTM 2010, PT I, 2010, 6426 : 555 - 572
[38] An ontological approach for defining agents for collaborative applications
Hawryszkiewycz, IT
WEB INFORMATION SYSTEMS ENGINEERING - WISE 2005, 2005, 3806 : 81 - 94
[39] The OntoREA© Accounting and Finance Model: Ontological Conceptualization of the Accounting and Finance Domain
Fischer-Pauzenberger, Christian
Schwaiger, Walter S. A.
CONCEPTUAL MODELING, ER 2017, 2017, 10650 : 506 - 519
[40] An ontological model of the domain of applications for the Internet of Things in analyzing information security
Lavrova D.S.
Vasil’ev Y.S.
Automatic Control and Computer Sciences, 2017, 51 (8) : 817 - 823

← 1 2 3 4 5 →