Title | Victim Communication Stack (VCS): A Flexible Model to Select the Human Attack Vector |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Frumento, Enrico, Freschi, Federica, Andreoletti, Davide, Consoli, Angelo |
Conference Name | Proceedings of the 12th International Conference on Availability, Reliability and Security |
Date Published | August 2017 |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-5257-4 |
Keywords | composability, Cross Layer Security, Human Attack Vector, Human Layer, pubcrawl, Resiliency, security, security models, Social Engineering |
Abstract | Information security has rapidly grown to meet the requirements of today services. A solid discipline has been developed as far as technical security is concerned. However, the human layer plays an increasingly decisive role in the managing of Information Technology (IT) systems. The research field that studies the vulnerabilities of the human layer is referred to as Social Engineering, and has not received the same attention of its technical counterpart. We try to partially fill this gap by studying the selection of the Human Attack Vector (HAV), i.e., the path or the means that the attacker uses to compromise the human layer. To this aim, we propose a multilayer model, named Victim Communication Stack (VCS), that provides the key elements to facilitate the choice of the HAV. This work has been carried out under the DOGANA European project. |
URL | https://dl.acm.org/doi/10.1145/3098954.3103156 |
DOI | 10.1145/3098954.3103156 |
Citation Key | frumento_victim_2017 |