A Framework Based on Personality Traits to Identify Vulnerabilities to Social Engineering Attacks

Eduardo Benavides-Astudillo, Néstor Tipan-Guerrero, Gema Castillo-Zambrano, Walter Fuertes Díaz, German Eduardo Rodríguez E.R. Galán, María Fernanda Cazáres, Daniel Nuñez-Agurto

Resultado de la investigación: Capítulo del libro/informe/acta de congresoContribución de conferenciarevisión exhaustiva

Resumen

Currently, all users massively use digital devices connected to the Internet. Because of this overcrowding, the number of cybercriminals who use Social Engineering techniques to extract sensitive information from users also increased. The attackers take advantage of the personality traits of their victims, such as friendliness, ignorance of basic security measures, naivety, or overconfidence. To combat this type of attack, we have developed a Framework based on personality traits, allowing us to know which people are more vulnerable than others are. Faced with this scenario, the main aim of this study is to develop a tool that allows determining which people are most vulnerable to Social Engineering attacks. The methodological process consisted of first determining the most common traits of users related to vulnerability. Then, the personality traits of a surveyed group were determined. Finally, the most vulnerable traits were matched with the personality traits of the respondents. The personality traits in which our research was framed is known as the Five-Factor Model of personality. The results show that this framework can be used to detect the most vulnerable user or groups and focus training and awareness on it or these groups.

Idioma originalInglés
Título de la publicación alojadaApplied Technologies - 3rd International Conference, ICAT 2021, Proceedings
EditoresMiguel Botto-Tobar, Sergio Montes León, Pablo Torres-Carrión, Marcelo Zambrano Vizuete, Benjamin Durakovic
EditorialSpringer Science and Business Media Deutschland GmbH
Páginas381-394
Número de páginas14
ISBN (versión impresa)9783031038839
DOI
EstadoPublicada - 2022
Evento3rd International Conference on Applied Technologies, ICAT 2021 - Quito, Ecuador
Duración: 27 oct. 202129 oct. 2021

Serie de la publicación

NombreCommunications in Computer and Information Science
Volumen1535 CCIS
ISSN (versión impresa)1865-0929
ISSN (versión digital)1865-0937

Conferencia

Conferencia3rd International Conference on Applied Technologies, ICAT 2021
País/TerritorioEcuador
CiudadQuito
Período27/10/2129/10/21

Nota bibliográfica

Publisher Copyright:
© 2022, Springer Nature Switzerland AG.

Huella

Profundice en los temas de investigación de 'A Framework Based on Personality Traits to Identify Vulnerabilities to Social Engineering Attacks'. En conjunto forman una huella única.

Citar esto