Social engineering in social networking sites : phase-based and source-based models

Algarni, Abdullah & Xu, Yue (2013) Social engineering in social networking sites : phase-based and source-based models. International Journal of e-Education, e-Business, e-Management and e-Learning, 3(6), pp. 456-462.

View at publisher (open access)

Abstract

Social networking sites (SNSs), with their large numbers of users and large information base, seem to be perfect breeding grounds for exploiting the vulnerabilities of people, the weakest link in security. Deceiving, persuading, or influencing people to provide information or to perform an action that will benefit the attacker is known as “social engineering.” While technology-based security has been addressed by research and may be well understood, social engineering is more challenging to understand and manage, especially in new environments such as SNSs, owing to some factors of SNSs that reduce the ability of users to detect the attack and increase the ability of attackers to launch it. This work will contribute to the knowledge of social engineering by presenting the first two conceptual models of social engineering attacks in SNSs. Phase-based and source-based models are presented, along with an intensive and comprehensive overview of different aspects of social engineering threats in SNSs.

Impact and interest:

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

Full-text downloads:

247 since deposited on 18 Feb 2014
47 in the past twelve months

Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.

ID Code: 67455
Item Type: Journal Article
Refereed: Yes
Keywords: Social engineering, Social networking sites, Information security, Trust, Deception
DOI: 10.7763/IJEEEE.2013.V3.278
ISSN: 2010-3654
Subjects: Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > COMPUTER SOFTWARE (080300) > Computer System Security (080303)
Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > INFORMATION SYSTEMS (080600) > Information Systems Management (080609)
Divisions: Past > Schools > Computer Science
Current > QUT Faculties and Divisions > Science & Engineering Faculty
Copyright Owner: Copyright 2013 International Association of Computer Science and Information Technology (IACSIT Press)
Deposited On: 18 Feb 2014 02:03
Last Modified: 20 Feb 2014 04:57

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page