网络钓鱼攻击中的人为因素:系统的文献综述

ACM Computing Surveys (CSUR) Pub Date : 2021-10-04 DOI:10.1145/3469886

Giuseppe Desolda, Lauren S. Ferro, Andrea Marrella, T. Catarci, M. Costabile

{"title":"网络钓鱼攻击中的人为因素:系统的文献综述","authors":"Giuseppe Desolda, Lauren S. Ferro, Andrea Marrella, T. Catarci, M. Costabile","doi":"10.1145/3469886","DOIUrl":null,"url":null,"abstract":"Phishing is the fraudulent attempt to obtain sensitive information by disguising oneself as a trustworthy entity in digital communication. It is a type of cyber attack often successful because users are not aware of their vulnerabilities or are unable to understand the risks. This article presents a systematic literature review conducted to draw a “big picture” of the most important research works performed on human factors and phishing. The analysis of the retrieved publications, framed along the research questions addressed in the systematic literature review, helps in understanding how human factors should be considered to defend against phishing attacks. Future research directions are also highlighted.","PeriodicalId":7000,"journal":{"name":"ACM Computing Surveys (CSUR)","volume":"20 1","pages":"1 - 35"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"30","resultStr":"{\"title\":\"Human Factors in Phishing Attacks: A Systematic Literature Review\",\"authors\":\"Giuseppe Desolda, Lauren S. Ferro, Andrea Marrella, T. Catarci, M. Costabile\",\"doi\":\"10.1145/3469886\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Phishing is the fraudulent attempt to obtain sensitive information by disguising oneself as a trustworthy entity in digital communication. It is a type of cyber attack often successful because users are not aware of their vulnerabilities or are unable to understand the risks. This article presents a systematic literature review conducted to draw a “big picture” of the most important research works performed on human factors and phishing. The analysis of the retrieved publications, framed along the research questions addressed in the systematic literature review, helps in understanding how human factors should be considered to defend against phishing attacks. Future research directions are also highlighted.\",\"PeriodicalId\":7000,\"journal\":{\"name\":\"ACM Computing Surveys (CSUR)\",\"volume\":\"20 1\",\"pages\":\"1 - 35\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-10-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"30\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"ACM Computing Surveys (CSUR)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3469886\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Computing Surveys (CSUR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3469886","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 30

摘要

网络钓鱼是指在数字通信中伪装成可信实体以获取敏感信息的欺诈行为。这种类型的网络攻击通常会成功，因为用户没有意识到自己的漏洞，或者无法理解其中的风险。本文提出了一个系统的文献综述，以绘制一个“大画面”，在人为因素和网络钓鱼方面进行了最重要的研究工作。对检索到的出版物的分析，以及在系统文献综述中解决的研究问题，有助于理解如何考虑人为因素来防御网络钓鱼攻击。展望了未来的研究方向。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Human Factors in Phishing Attacks: A Systematic Literature Review

Phishing is the fraudulent attempt to obtain sensitive information by disguising oneself as a trustworthy entity in digital communication. It is a type of cyber attack often successful because users are not aware of their vulnerabilities or are unable to understand the risks. This article presents a systematic literature review conducted to draw a “big picture” of the most important research works performed on human factors and phishing. The analysis of the retrieved publications, framed along the research questions addressed in the systematic literature review, helps in understanding how human factors should be considered to defend against phishing attacks. Future research directions are also highlighted.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

ACM Computing Surveys (CSUR)

自引率

0.00%

发文量