A layered defense mechanism for a social engineering aware perimeter

Abeywardana, Kavinga Yapa, Pfluegel, Eckhard and Tunnicliffe, Martin (2016) A layered defense mechanism for a social engineering aware perimeter. In: SAI Computing Conference (SAI), 2016; 13 - 15 July 2016, London, U.K..

Full text not available from this archive.

Abstract

While many cyber security organizations urge the corporate world to use defence-in-depth to create vigilant network perimeters, the human factor is often overlooked. Security evaluation frameworks focus mostly on critical assets of an organization and technical aspects of prevailing risks. There is consequently no specific framework to identify, categorize, analyse and mitigate social engineering related risks. This paper identifies the requirement for such a framework through an in-depth investigation of an actual organization and extensive analysis of existing methodologies. On the basis of this a layered defence strategy SERA is developed, starting with the basic building blocks for social-engineering aware risk analysis. A chronological attack classification framework is presented as an enhancement of existing frameworks on social engineering.

Item Type: Conference or Workshop Item (Paper)
Event Title: SAI Computing Conference (SAI), 2016
Organising Body: IEEE
Additional Information: Published in: Proceedings of 2016 SAI Computing Conference 2016, London : IEEE, pp. 1054-1062. ISBN: 9781467384605
Research Area: Computer science and informatics
Faculty, School or Research Centre: Faculty of Science, Engineering and Computing > School of Computing and Information Systems
Related URLs:
Depositing User: Martin Tunnicliffe
Date Deposited: 29 Mar 2017 10:13
Last Modified: 29 Mar 2017 10:13
URI: http://eprints.kingston.ac.uk/id/eprint/37187

Actions (Repository Editors)

Item Control Page Item Control Page