Advances in Human Factors in Cybersecurity
Proceedings of the AHFE 2018 International Conference on Human Factors in Cybersecurity, July 21-25, 2018, Loews Sapphire Falls Resort at Universal Studios, Orlando, Florida, USA
1st Edition
Published on 23. June 2018
XI, 242 pages
978-3-319-94782-2 (ISBN)
Description
This book reports on the latest research and developments in the field of cybersecurity, particularly focusing on personal security and new methods for reducing human error and increasing cyber awareness, as well as innovative solutions for increasing the security of advanced Information Technology (IT) infrastructures. It covers a broad range of topics, including methods for human training; novel cyber-physical and process-control systems; social, economic, and behavioral aspects of cyberspace; issues concerning the cybersecurity index; security metrics for enterprises; and risk evaluation. Based on the AHFE 2018 International Conference on Human Factors in Cybersecurity, held on July 21-25, 2018, in Orlando, Florida, USA, the book not only presents innovative cybersecurity technologies, but also discusses emerging threats, current gaps in the available systems, and future challenges that can be successfully overcome with the help of human factors research.
More details
Series
Language
English
Place of publication
Cham
Switzerland
Publishing group
Springer International Publishing
Target group
Professional and scholarly
Product notice
Reflowable
Illustrations
XI, 242 p. 66 illus.
File size
12,89 MB
ISBN-13
978-3-319-94782-2 (9783319947822)
DOI
10.1007/978-3-319-94782-2
Schweitzer Classification
Other editions
Additional editions
Tareq Z. Ahram | Denise Nicholson
Advances in Human Factors in Cybersecurity
Proceedings of the AHFE 2018 International Conference on Human Factors in Cybersecurity, July 21-25, 2018, Loews Sapphire Falls Resort at Universal Studios, Orlando, Florida, USA
Book
06/2018
Springer
€160.49
Shipment within 10-15 days
Content
- Intro
- Advances in Human Factors and Ergonomics 2018
- Preface
- Contents
- Cybersecurity Tools and Analytics
- A Simulation-Based Approach to Development of a New Insider Threat Detection Technique: Active Indicators
- Abstract
- 1 Introduction
- 1.1 The Insider Threat
- 1.2 Deception
- 1.3 Active Indicator Probes (AIP)
- 1.4 Detection of Response to AIP
- 1.5 Goal
- 2 Simulation
- 2.1 Necessity
- 2.2 Role Induction and Immersion
- 2.3 Summary of Eye Gaze Strategy
- 2.4 Implementation
- 3 Method
- 3.1 Participants
- 3.2 Apparatus
- 3.3 Eye Tracking Metrics
- 3.4 Financial Simulation
- 3.5 Procedure
- 4 Results
- 5 Discussion
- 5.1 Limitations
- 5.2 Future Work
- Acknowledgements
- References
- Biometric Electronic Signature Security
- Abstract
- 1 Introduction
- 1.1 Protocols
- 2 Biometric Electronic Signatures
- 2.1 Standardization
- 3 Biometric Intention and Acceptance
- 3.1 Abstract Schema
- 4 Conclusion
- References
- Convenience or Strength? Aiding Optimal Strategies in Password Generation
- Abstract
- 1 Introduction
- 2 Related Work
- 3 Study
- 4 Results and Discussion
- 5 Conclusion
- References
- A Metric to Assess Cyberattacks
- Abstract
- 1 Introduction
- 2 Defining a Cybersecurity Metric
- 3 The Attacker/Defender Scenario
- 4 RSA: An Interesting Example
- 5 Creating the RSA Public-Key Cryptosystem
- 6 Attack/Defense Scenarios
- 7 Conclusion
- References
- Measuring Application Security
- Abstract
- 1 Introduction
- 2 Methodology
- 2.1 Literature Review
- 2.2 Interviews
- 3 Observations
- 3.1 Types of Organizations
- 3.2 Personnel Roles
- 3.3 Application Security Boundaries
- 3.4 Goals, Questions, Metrics, and Tools
- Acknowledgements
- References
- Exploring Older Adult Susceptibility to Fraudulent Computer Pop-Up Interruptions
- Abstract
- 1 Introduction
- 2 Method
- 3 Results and Discussion
- 4 Limitations
- 5 Implications
- Acknowledgments
- References
- A Game-Theoretical Model of Ransomware
- Abstract
- 1 Introduction
- 2 Related Work
- 3 A Game-Theoretical Model
- 3.1 Characteristics of the Game
- 3.2 Real-Life Decision Making
- 3.3 Amount Renegotiation
- 4 Conclusion
- References
- Cyber Security Awareness Among College Students
- Abstract
- 1 Introduction
- 2 Method
- 3 Results
- 3.1 Knowledge of Cyber Security
- 3.2 Privacy
- 3.3 Trust
- 3.4 Trust of University Data Security
- 3.5 Password
- 4 Data Analysis
- 4.1 Knowledge of Cyber Security
- 4.2 Password
- 4.3 Privacy
- 4.4 Trust
- 5 Conclusion
- References
- Graphical Authentication Schemes: Balancing Amount of Image Distortion
- Abstract
- 1 Introduction
- 2 Methods
- 2.1 Participants
- 2.2 Stimuli
- 2.3 Mathematical Formula for Creating Distorted Images
- 2.4 Procedure
- 3 Results and Discussion
- 3.1 Image Analysis
- 3.2 Casual Over-the-Shoulder Attacker Role
- 3.3 User Role
- 4 Conclusions
- References
- Privacy and Cybersecurity
- What's Your Password? Exploring Password Choice Conformity in Group Decision Making
- Abstract
- 1 Introduction
- 2 Materials
- 3 Methodology
- 4 Discussion
- References
- Using Dark Web Crawler to Uncover Suspicious and Malicious Websites
- Abstract
- 1 Introduction
- 2 Background
- 3 Proposed Design
- 3.1 Main Server
- 3.2 Node Manager
- 3.3 Asset Parser
- 3.4 Database Controller
- 3.5 Search Manager
- 3.6 Distributed Nodes
- 3.7 Clients
- 4 Recommendations
- 5 Conclusion
- References
- Privacy Preferences vs. Privacy Settings: An Exploratory Facebook Study
- Abstract
- 1 Introduction
- 2 Related Work
- 3 Our Approach
- 3.1 FB Survey, Data Acquisition, and Analysis
- 3.2 C-HIP Model Framework to Study FB's Privacy Settings
- 3.3 Comprehension
- 3.4 Attention Switch and Retention
- 3.5 Beliefs and Attitudes
- 3.6 Motivation
- 4 Results and Discussion
- 4.1 Gender
- 4.2 Age
- 4.3 Frequency of FB Visits
- 4.4 Privacy Concerns
- 4.5 Frequency of Editing Privacy Settings
- 4.6 Remembering Privacy Settings
- 4.7 Attack Experience
- 4.8 Desired vs Actual Privacy Setting Mismatch Ratio
- 4.9 Knowledge Test and Task Difficulty
- 4.10 Task Completion
- 4.11 Hypothesis Tests
- 5 Conclusion and Future Work
- References
- Toward Robust Models of Cyber Situation Awareness
- Abstract
- 1 Introduction
- 2 Situation Awareness
- 3 Models of Cyber Situation Awareness
- 4 Consideration of Cyber Landscape Model
- 5 Consideration of End User Model
- 6 Discussion
- Acknowledgments
- References
- Training Cyber Security Exercise Facilitator: Behavior Modeling Based on Human Error
- Abstract
- 1 Background
- 1.1 Increasing Cyber Risk Awareness
- 1.2 Developing Cyber Incident Response Exercise
- 1.3 Facilitators' Effect on Exercise Participants
- 2 Establish the Facilitation Error Model
- 2.1 Defining Facilitation
- 2.2 Error Model of the Facilitation
- 3 Research Methods
- 3.1 Qualitative Analysis of Audio Recordings
- 3.2 Data Collection
- 4 Analysis
- 4.1 Identifying Error from the Core Capability Indicators (Phase X)
- 4.2 Analyzing Deviation from the Learning Goals (Phase Y)
- 5 Results
- 5.1 From the Core Capability Indicator (Exercise Phase: X)
- 5.2 From the Learning Goals (Exercise Phase: Y)
- 6 Discussions
- Acknowledgments
- References
- Who Shares What with Whom? Information Sharing Preferences in the Online and Offline Worlds
- Abstract
- 1 Introduction
- 2 Related Works
- 3 Methodology
- 3.1 Survey Design and Measurement
- 3.2 Survey Design and Measurement
- 4 Results
- 4.1 Overview of Sharing Preferences in Online and Offline Context
- 4.2 Information Sharing Preferences for Online and Offline Entities
- 4.3 Sharing Preferences for Information Types
- 5 Discussion
- 5.1 Sharing Preferences for Recipient Entities
- 5.2 Sharing Preferences for Types of Information
- 5.3 Limitations and Future Directions
- 6 Conclusion
- References
- Worker's Privacy Protection in Mobile Crowdsourcing Platform
- Abstract
- 1 Introduction
- 2 Related Work
- 2.1 Privacy Techniques to the Worker's Identity
- 2.2 Privacy Techniques to the Worker's Sensitive Location
- 3 Methodology Design
- 3.1 Worker's Identity Privacy Protection
- 3.2 Worker's Location Privacy Protection
- 4 Performance Evaluation
- 4.1 Communication Overhead
- 4.2 Security and Privacy in Our Solution
- 5 Conclusion
- Acknowledgments
- References
- Design and Operation Framework for Industrial Control System Security Exercise
- Abstract
- 1 Introduction
- 2 Method for Developing Security Exercises Tailored to Individual Companies
- 2.1 Virtual Company Image
- 2.2 Attack Scenario
- 2.3 Defense Scenario for Plant Shifting by Cyber-Attack
- 2.4 Organizing Scenario (Safety-Security-Business)
- 3 Evaluation Methodology of ICS Security Exercise
- 4 Illustrative Exercise
- 4.1 NIT-Exercise Workshop
- 4.2 Virtual Company Image
- 4.3 Attack Scenario
- 4.4 Defense Scenario
- 5 Concluding Remarks
- Acknowledgments
- References
- Cultural and Social Factors in Cybersecurity
- Cybersecurity Skills to Address Today's Threats
- Abstract
- 1 Introduction
- 2 Discussion
- 2.1 2016 Cybersecurity Workforce Survey
- 2.2 KSAs
- 3 Future Work
- References
- Building Organizational Risk Culture in Cyber Security: The Role of Human Factors
- Abstract
- 1 Introduction
- 2 Methodology
- 3 Quantitative Analysis
- 3.1 Area 1: Individual Factors
- 3.2 Area 2: Information Technology and Cyber Risk
- 3.3 Area 3: Risks in the Organization and in the Private Life
- 3.4 Area 4: Prevention Measures and Behaviors
- 4 Qualitative Analysis
- 5 Conclusions and Perspectives
- References
- Designing an Effective Course to Improve Cybersecurity Awareness for Engineering Faculties
- Abstract
- 1 Introduction
- 2 State of the Art
- 3 Designing the Course
- 3.1 Conclusion
- References
- Recommendation Across Many Learning Systems to Optimize Teaching and Training
- Abstract
- 1 Introduction
- 2 The Learning-Resource Recommender
- 3 Design Approach
- 3.1 Theories About Expertise and Its Acquisition
- 3.2 Research on Individual State Variables
- 4 Discussion
- Acknowledgements
- References
- Study of Social Networks as Research Entities Under the Threat of Identity and Information Vulnerability
- Abstract
- 1 Introduction
- 2 State of the Art
- 3 Methods and Development
- 3.1 Data Collection
- 3.2 Pre-processing of Data
- 4 Discussion
- 5 Conclusion
- References
- Factors of Socially Engineering Citizens in Critical Situations
- Abstract
- 1 Background
- 1.1 Government: Policy and Regulations
- 1.2 Education: Awareness and Training
- 2 Methods
- 3 Results and Discussion
- 3.1 Solving Online Manipulation Situations
- 3.2 Factors Determining Behaviour in Critical Situation
- 3.3 Responsibility for Awareness
- 3.4 Suggestions
- 4 Conclusion
- Acknowledgements
- References
- Author Index
