A Framework Based on Personality Traits to Identify Vulnerabilities to Social Engineering Attacks

Eduardo Benavides-Astudillo, Néstor Tipan-Guerrero, Gema Castillo-Zambrano, Walter Fuertes Díaz, German Eduardo Rodríguez E.R. Galán, María Fernanda Cazáres, Daniel Nuñez-Agurto

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Currently, all users massively use digital devices connected to the Internet. Because of this overcrowding, the number of cybercriminals who use Social Engineering techniques to extract sensitive information from users also increased. The attackers take advantage of the personality traits of their victims, such as friendliness, ignorance of basic security measures, naivety, or overconfidence. To combat this type of attack, we have developed a Framework based on personality traits, allowing us to know which people are more vulnerable than others are. Faced with this scenario, the main aim of this study is to develop a tool that allows determining which people are most vulnerable to Social Engineering attacks. The methodological process consisted of first determining the most common traits of users related to vulnerability. Then, the personality traits of a surveyed group were determined. Finally, the most vulnerable traits were matched with the personality traits of the respondents. The personality traits in which our research was framed is known as the Five-Factor Model of personality. The results show that this framework can be used to detect the most vulnerable user or groups and focus training and awareness on it or these groups.

Original languageEnglish
Title of host publicationApplied Technologies - 3rd International Conference, ICAT 2021, Proceedings
EditorsMiguel Botto-Tobar, Sergio Montes León, Pablo Torres-Carrión, Marcelo Zambrano Vizuete, Benjamin Durakovic
PublisherSpringer Science and Business Media Deutschland GmbH
Pages381-394
Number of pages14
ISBN (Print)9783031038839
DOIs
StatePublished - 2022
Event3rd International Conference on Applied Technologies, ICAT 2021 - Quito, Ecuador
Duration: 27 Oct 202129 Oct 2021

Publication series

NameCommunications in Computer and Information Science
Volume1535 CCIS
ISSN (Print)1865-0929
ISSN (Electronic)1865-0937

Conference

Conference3rd International Conference on Applied Technologies, ICAT 2021
Country/TerritoryEcuador
CityQuito
Period27/10/2129/10/21

Bibliographical note

Publisher Copyright:
© 2022, Springer Nature Switzerland AG.

Keywords

  • Cybersecurity
  • Five-Factor Model
  • Framework
  • Personal trait
  • Social Engineering

Fingerprint

Dive into the research topics of 'A Framework Based on Personality Traits to Identify Vulnerabilities to Social Engineering Attacks'. Together they form a unique fingerprint.

Cite this