HATCH: Hack And Trick Capricious Humans – A Serious Game on Social Engineering

scite shows how a scientific paper has been cited by providing the context of the citation, a classification describing whether it supports, mentions, or contrasts the cited claim, and a label indicating in which section the citation was made.

Header Abstract Content Author and article information REFERENCES Comments

Record: found
Abstract: found
Conference Proceedings: found

Is Open Access

HATCH: Hack And Trick Capricious Humans – A Serious Game on Social Engineering

Published

proceedings-article

Author(s): Kristian Beckers ¹ , Sebastian Pape ² , Veronika Fries ¹

Publication date (Print): July 2016

Conference name: Proceedings of the 30th International BCS Human Computer Interaction Conference (HCI)

Conference theme: Fusion

Conference date: 11 - 15 July 2016

Keywords: Security, Methods, Education, Social Engineering, Serious Gaming

Bookmark

Abstract

Content

Author and article information

Contributors

Kristian Beckers

Sebastian Pape

Veronika Fries

Conference

Publication date: July 2016

Publication date (Print): July 2016

Pages: 1-3

Affiliations

[0001]Technische Universität München (TUM)

Institute of Informatics

Boltzmannstr. 3

85748 Garching, Germany

[0002]Goethe-University Frankfurt

Faculty of Economics

Theodor-W.-Adorno-Platz 4

60323 Frankfurt, Germany

Article

DOI: 10.14236/ewic/HCI2016.94

SO-VID: ef4958b1-ff29-42e5-b58f-f66b8ef30a87

License:

This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

Conference name: Proceedings of the 30th International BCS Human Computer Interaction Conference

Conference acronym: HCI

Conference number: 30

Conference location: Bournemouth University, Poole, UK

Conference date: 11 - 15 July 2016

Conference sponsor: Electronic Workshops in Computing (eWiC)

Conference theme: Fusion

History

Product

1477-9358 BCS Learning & Development

Self URI (article page): https://www.scienceopen.com/hosted-document?doi=10.14236/ewic/HCI2016.94

Self URI (journal page): https://ewic.bcs.org/

REFERENCES

K. BeckersS. Pape 2016a A serious game for eliciting social engineering security requirements. Proceedings of the 24th IEEE International Conference on Requirements Engineering RE 16 To Appear IEEE Computer Society
K. BeckersS. Pape 2016b Theoretical foundation for: A serious game for social engineering. Technical report, Technical University Munich (TUM) and Goethe-University Frankfurt http://pape.science/social-engineering/
M. Csikszentmihalyi 2000 Beyond Boredom and Anxiety: Experiencing Flow in Work and Play 25th Anniversary Jossey-Bass
T. DenningA. LernerA. ShostackT. Kohno 2013 Control-alt-hack: The design and evaluation of a card game for computer security awareness and education Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security, CCS ’13 New York, NY, USA 915 928 ACM
R. Gulati 2003 The threat of social engineering and your defense against it. SANS Reading Room
C. Hadnagy 2010 Social engineering: The art of human hacking Indianapolis John Wiley & Sons
C. Hadnagy 2016 The social engineering infographic Technical report, Social Engineer, Inc. http://www.social-engineer.org/social-engineering/social-engineering-infographic/
H. A. KrugerW. D. Kearney 2006 A prototype for assessing information security awareness. Comput. Secur 25 4 289 296
K. D. MitnickW. L. Simon 2009 The Art of Deception Wiley
T. R. Peltier 2006 Social engineering: Concepts and solutions. Information Systems Security 15 5 13 21
Proofpoint 2016 The human factor report 2016. https://www.proofpoint.com/us/human-factor-report-2016
F. RheinbergR. VollmeyerS. Engeser 2016 Flow kurz skala. Technical report http://www.psych.uni-potsdam.de/people/rheinberg/messverfahren/FKS-englisch.pdf
A. Shostack 2012 Elevation of privilege: Drawing developers into threat modeling Technical report, Microsoft, Redmond, U.S. http://download.microsoft.com/download/F/A/E/FAE1434F-6D22-4581-9804-8B60C04354E4/EoP_Whitepaper.pdf
A. Shostack 2014 Threat Modeling: Designing for Security 1st John Wiley & Sons Inc
F. StajanoP Wilson 2011 March Understanding scam victims: Seven principles for systems security. Commun ACM 54 3 70 75
L. WilliamsM. GegickA. Meneely 2009 Protection poker: Structuring software security risk assessment and knowledge transfer. Proceedings of International Symposium on Engineering Secure Software and Systems 122 134 Springer
L. WilliamsA. MeneelyG. Shipley 2010 May Protection poker: The new software security “game”. Security Privacy IEEE 8 3 14 20

Comments

Comment on this article

[1] K. BeckersS. Pape 2016a A serious game for eliciting social engineering security requirements. Proceedings of the 24th IEEE International Conference on Requirements Engineering RE 16 To Appear IEEE Computer Society

[2] K. BeckersS. Pape 2016b Theoretical foundation for: A serious game for social engineering. Technical report, Technical University Munich (TUM) and Goethe-University Frankfurt http://pape.science/social-engineering/

[3] M. Csikszentmihalyi 2000 Beyond Boredom and Anxiety: Experiencing Flow in Work and Play 25th Anniversary Jossey-Bass

[4] T. DenningA. LernerA. ShostackT. Kohno 2013 Control-alt-hack: The design and evaluation of a card game for computer security awareness and education Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security, CCS ’13 New York, NY, USA 915 928 ACM

[5] R. Gulati 2003 The threat of social engineering and your defense against it. SANS Reading Room

[6] C. Hadnagy 2010 Social engineering: The art of human hacking Indianapolis John Wiley & Sons

[7] C. Hadnagy 2016 The social engineering infographic Technical report, Social Engineer, Inc. http://www.social-engineer.org/social-engineering/social-engineering-infographic/

[8] H. A. KrugerW. D. Kearney 2006 A prototype for assessing information security awareness. Comput. Secur 25 4 289 296

[9] K. D. MitnickW. L. Simon 2009 The Art of Deception Wiley

[10] T. R. Peltier 2006 Social engineering: Concepts and solutions. Information Systems Security 15 5 13 21

[11] Proofpoint 2016 The human factor report 2016. https://www.proofpoint.com/us/human-factor-report-2016

[12] F. RheinbergR. VollmeyerS. Engeser 2016 Flow kurz skala. Technical report http://www.psych.uni-potsdam.de/people/rheinberg/messverfahren/FKS-englisch.pdf

[13] A. Shostack 2012 Elevation of privilege: Drawing developers into threat modeling Technical report, Microsoft, Redmond, U.S. http://download.microsoft.com/download/F/A/E/FAE1434F-6D22-4581-9804-8B60C04354E4/EoP_Whitepaper.pdf

[14] A. Shostack 2014 Threat Modeling: Designing for Security 1st John Wiley & Sons Inc

[15] F. StajanoP Wilson 2011 March Understanding scam victims: Seven principles for systems security. Commun ACM 54 3 70 75

[16] L. WilliamsM. GegickA. Meneely 2009 Protection poker: Structuring software security risk assessment and knowledge transfer. Proceedings of International Symposium on Engineering Secure Software and Systems 122 134 Springer

[17] L. WilliamsA. MeneelyG. Shipley 2010 May Protection poker: The new software security “game”. Security Privacy IEEE 8 3 14 20

UK Computing Summit 2025: Navigating change (surviving and beyond) - 29-30 April @ Sheffield Hallam University - Register here.

HATCH: Hack And Trick Capricious Humans – A Serious Game on Social Engineering

Contributors

Conference

Affiliations

Article

History

Product

Categories

Comment on this article