Principles of persuasion in social engineering and their use in phishing

Ferreira, Ana, Coventry, Lynne and Lenzini, Gabriele (2015) Principles of persuasion in social engineering and their use in phishing. In: Human Aspects of Information Security, Privacy, and Trust. Lecture Notes in Computer Science, 9190 . Springer, London, pp. 36-47. ISBN 9783319203751

Full text not available from this repository.
Official URL: http://dx.doi.org/10.1007/978-3-319-20376-8_4

Abstract

Research on marketing and deception has identified principles of persuasion that influence human decisions. However, this research is scattered: it focuses on specific contexts and produces different taxonomies. In regard to frauds and scams, three taxonomies are often referred in the literature: Cialdini’s principles of influence, Gragg’s psychological triggers, and Stajano et al. principles of scams. It is unclear whether these relate but clearly some of their principles seem overlapping whereas others look complementary. We propose a way to connect those principles and present a merged and reviewed list for them. Then, we analyse various phishing emails and show that our principles are used therein in specific combinations. Our analysis of phishing is based on peer review and further research is needed to make it automatic, but the approach we follow, together with principles we propose, can be applied more consistently and more comprehensively than the original taxonomies.

Item Type: Book Section
Uncontrolled Keywords: social engineering
Subjects: C800 Psychology
G400 Computer Science
Department: Faculties > Health and Life Sciences > School of Life Sciences > Psychology
Depositing User: Ay Okpokam
Date Deposited: 27 Oct 2015 14:46
Last Modified: 10 Nov 2016 12:40
URI: http://nrl.northumbria.ac.uk/id/eprint/24158

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics


Policies: NRL Policies | NRL University Deposit Policy | NRL Deposit Licence