Improving Cybersecurity Through Human Systems Integration 29 June 2016
Advanced Persistent Threat (APT) attackers accomplish their attack objectives by co-opting users' credentials. Traditional cyber defenses leave users vulnerable to APT attacks which employ spearphishing. The success of spearphishing attacks is not a data processing failure, but is the result of defenders failing to apply the principles of Human System Integration to the problem of spearphishing. We discuss an alternative defensive strategy which addresses human performance capabilities and limitations to disrupt spearphishing attacks.
Keywords: Human Systems Integration, HSI, negligent users, cyberspace operations, information operations, military deception, habit, cognitive dimension, phishing, spearphishing, APT, computer network defense, usability, Compliance Budget
Published: Small Wars Journal: http://smallwarsjournal.com/jrnl/art/improving-cybersecurity-through-human-systems-integration
| Attachment | Size |
|---|---|
| bytes |
PDF document- 1.05 MB
- 39 downloads
- Download
- PDF version
- Printer-friendly version
- Science of Security
- APT
- cognitive dimension
- Compliance Budget
- computer network defense
- cyberspace operations
- habit
- HSI
- Human Systems Integration
- information operations
- military deception
- negligent users
- Phishing
- spearphishing
- usability
- United States of America
- Industry
- White Paper
- Cyber Attacks
- Phishing
- Cyber Security
- Usable Security
- Social Engineering
- Spoofing
- Usability in Security and Privacy
- Social Engineering Attacks