{"title":"模拟钓鱼训练练习与游戏化钓鱼教育游戏","authors":"Niall Davis, Emanuel S. Grant","doi":"10.1109/ICERECT56837.2022.10060595","DOIUrl":null,"url":null,"abstract":"Phishing, a type of social engineering attack, continues to be a problem, and anti-phishing approaches must be implemented to stymie these attacks. With the rise of new educational methods that go beyond lecture-based, the question is whether there is a modern approach to education. One method that has existed for years is that of simulated phishing training, but it is thought that there needs to be a more engaging approach to this area of education. Gamification in phishing education is a more recent but not extremely well studied approach, which leads to the question – Which is better for phishing education of users, simulated phishing exercises or gamified phishing training? In this report, five research articles in each category are described and summarized, and then an analysis is conducted within the groups and between the two groups. The analysis is focused on quantitative metrics that appear in the selected research articles; there is a lesser focus on the qualitative analysis conducted in the reviewed reports. From this comparative analysis, gamified phishing training appears to be a more suitable method of educating users, as it reduces susceptibility and engages students at a higher level of learning.","PeriodicalId":205485,"journal":{"name":"2022 Fourth International Conference on Emerging Research in Electronics, Computer Science and Technology (ICERECT)","volume":"63 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-12-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Simulated Phishing Training Exercises versus Gamified Phishing Education Games\",\"authors\":\"Niall Davis, Emanuel S. Grant\",\"doi\":\"10.1109/ICERECT56837.2022.10060595\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Phishing, a type of social engineering attack, continues to be a problem, and anti-phishing approaches must be implemented to stymie these attacks. With the rise of new educational methods that go beyond lecture-based, the question is whether there is a modern approach to education. One method that has existed for years is that of simulated phishing training, but it is thought that there needs to be a more engaging approach to this area of education. Gamification in phishing education is a more recent but not extremely well studied approach, which leads to the question – Which is better for phishing education of users, simulated phishing exercises or gamified phishing training? In this report, five research articles in each category are described and summarized, and then an analysis is conducted within the groups and between the two groups. The analysis is focused on quantitative metrics that appear in the selected research articles; there is a lesser focus on the qualitative analysis conducted in the reviewed reports. From this comparative analysis, gamified phishing training appears to be a more suitable method of educating users, as it reduces susceptibility and engages students at a higher level of learning.\",\"PeriodicalId\":205485,\"journal\":{\"name\":\"2022 Fourth International Conference on Emerging Research in Electronics, Computer Science and Technology (ICERECT)\",\"volume\":\"63 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-12-26\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 Fourth International Conference on Emerging Research in Electronics, Computer Science and Technology (ICERECT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICERECT56837.2022.10060595\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 Fourth International Conference on Emerging Research in Electronics, Computer Science and Technology (ICERECT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICERECT56837.2022.10060595","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Simulated Phishing Training Exercises versus Gamified Phishing Education Games
Phishing, a type of social engineering attack, continues to be a problem, and anti-phishing approaches must be implemented to stymie these attacks. With the rise of new educational methods that go beyond lecture-based, the question is whether there is a modern approach to education. One method that has existed for years is that of simulated phishing training, but it is thought that there needs to be a more engaging approach to this area of education. Gamification in phishing education is a more recent but not extremely well studied approach, which leads to the question – Which is better for phishing education of users, simulated phishing exercises or gamified phishing training? In this report, five research articles in each category are described and summarized, and then an analysis is conducted within the groups and between the two groups. The analysis is focused on quantitative metrics that appear in the selected research articles; there is a lesser focus on the qualitative analysis conducted in the reviewed reports. From this comparative analysis, gamified phishing training appears to be a more suitable method of educating users, as it reduces susceptibility and engages students at a higher level of learning.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
