I-Corps: A Platform to Automatically Measure Users Susceptibility to Social Engineering Attacks
I-Corps:自动测量用户对社会工程攻击敏感度的平台
基本信息
- 批准号:2227704
- 负责人:
- 金额:$ 5万
- 依托单位:
- 依托单位国家:美国
- 项目类别:Standard Grant
- 财政年份:2022
- 资助国家:美国
- 起止时间:2022-06-15 至 2025-05-31
- 项目状态:未结题
- 来源:
- 关键词:
项目摘要
The broader impact/commercial potential of this I-Corps project is the development of security awareness technology for corporate employees who are susceptible to social engineering attacks; i.e., phishing attacks. To identify those who are susceptible to phishing attacks, organizations typically self-phish, which is phishing one’s own employees and seeing who responds. Organizations concerned with cybersecurity may hire services or conduct phishing campaigns themselves. Self-phishing may only identify those who are extremely susceptible due to the relatively generic phishing emails that are typically used during such campaigns. Organizations that use self-phishing to identify susceptible workers may have a false sense of security. There is a continuing need for a ways to identify workers susceptible to more complex phishing campaigns. The proposed technology measures users’ susceptibility to phishing attacks from publicly available information about those users.This I-Corps project is based on the development of a technology platform to measure individuals in an organization that are susceptible to phishing attacks. The proposed technology uses publicly available information to quantify users’ personality traits, demographics, education, and experiences that are known to predict phishing susceptibility. That constellation of data is then used to compute an estimate how susceptible each user is to a phishing attack. The proposed platform may enhance an organization's efforts to identify individuals who would most benefit from security awareness training. In addition, the proposed technology may have a broad impact on enhancing penetration testing that targets people who are operating critical infrastructure, i.e., the weakest links in security systems. The project also may significantly impact the development of effective cybersecurity education.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
这个I-Corps项目更广泛的影响/商业潜力是为容易受到社会工程攻击的公司员工开发安全意识技术;即,网络钓鱼攻击为了识别那些容易受到网络钓鱼攻击的人,组织通常会自我钓鱼,也就是对自己的员工进行网络钓鱼,看看谁会响应。 关注网络安全的组织可能会自行雇用服务或开展网络钓鱼活动。 自我网络钓鱼可能只识别那些由于在此类活动中通常使用的相对通用的网络钓鱼电子邮件而极易受到影响的人。使用自我网络钓鱼来识别易受影响的员工的组织可能会有一种虚假的安全感。 一直需要一种方法来识别易受更复杂的网络钓鱼活动影响的员工。拟议的技术测量用户的敏感性,从公开的信息,这些用户的网络钓鱼攻击。这个I-Corps项目是基于一个技术平台的发展,以衡量个人在一个组织,容易受到网络钓鱼攻击。 所提出的技术使用公开可用的信息来量化用户的个性特征、人口统计、教育和经验,这些都是已知的预测网络钓鱼易感性的信息。 然后使用该数据星座来计算每个用户对网络钓鱼攻击的敏感程度的估计。 拟议的平台可加强一个组织的努力,以确定最能从安全意识培训中受益的个人。 此外,所提出的技术可能对增强针对操作关键基础设施的人员的渗透测试产生广泛影响,即,安全系统中最薄弱的环节该项目还可能对有效的网络安全教育的发展产生重大影响。该奖项反映了NSF的法定使命,并通过使用基金会的知识价值和更广泛的影响审查标准进行评估,被认为值得支持。
项目成果
期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
数据更新时间:{{ journalArticles.updateTime }}
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
数据更新时间:{{ journalArticles.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ monograph.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ sciAawards.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ conferencePapers.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ patent.updateTime }}
Akbar Siami Namin其他文献
Akbar Siami Namin的其他文献
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
{{ truncateString('Akbar Siami Namin', 18)}}的其他基金
Collaborative Research: SaTC: CORE: Small: Analytical Models for Conversational Social Engineering Attacks
协作研究:SaTC:核心:小型:对话式社会工程攻击的分析模型
- 批准号:
2319802 - 财政年份:2023
- 资助金额:
$ 5万 - 项目类别:
Continuing Grant
SaTC: EDU: Improving Student Learning and Engagement in Digital Forensics through Collaborative Investigation of Cyber Security Incidents and Simulated Capture-the-Flag Exercises
SaTC:EDU:通过网络安全事件的协作调查和模拟夺旗练习来提高学生对数字取证的学习和参与
- 批准号:
1821560 - 财政年份:2018
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
CyberCorps: Capacity Building In Social Engineering Penetration Testing
CyberCorps:社会工程渗透测试的能力建设
- 批准号:
1723765 - 财政年份:2017
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
SBE: Medium: User-Centric Design of a Sonification System for Automatically Alarming Security Threats and Impact
SBE:中:以用户为中心的声音化系统设计,用于自动警报安全威胁和影响
- 批准号:
1564293 - 财政年份:2016
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
Building Cybersecurity Workforce and Capacity through Enhancing Defending Skill Sets
通过增强防御技能来建设网络安全劳动力和能力
- 批准号:
1516636 - 财政年份:2015
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
I-Corps: CyberExercises, Instructional Modules Development for Exercise-based Teaching of CyberSecurity Concepts
I-Corps:网络练习、网络安全概念基于练习的教学的教学模块开发
- 批准号:
1514603 - 财政年份:2015
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
EAGER: Sonifying Cyber-Security Cues for Internet Users Who Are Visually Impaired
EAGER:为视障互联网用户提供清晰的网络安全提示
- 批准号:
1347521 - 财政年份:2013
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
SFS: Capacity Building: Collaborative Project: Cyber-Security Education for Community College Faculty in Texas
SFS:能力建设:合作项目:德克萨斯州社区学院教师的网络安全教育
- 批准号:
1241756 - 财政年份:2012
- 资助金额:
$ 5万 - 项目类别:
Standard Grant
相似国自然基金
Data-driven Recommendation System Construction of an Online Medical Platform Based on the Fusion of Information
- 批准号:
- 批准年份:2024
- 资助金额:万元
- 项目类别:外国青年学者研究基金项目
相似海外基金
An innovative platform using ML/AI to analyse farm data and deliver insights to improve farm performance, increasing farm profitability by 5-10%
An%20innovative%20platform%20using%20ML/AI%20to%20analysis%20farm%20data%20and%20deliver%20insights%20to%20improv%20farm%20performance,%20increasing%20farm%20profitability%20by%205-10%
- 批准号:
10093235 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Collaborative R&D
Automating a novel multi-tool additive and subtractive manufacturing platform for micrometre-resolution prototyping across diverse industries
自动化新型多工具增材和减材制造平台,用于跨不同行业的微米分辨率原型制作
- 批准号:
10097846 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Collaborative R&D
An innovative international payment collection platform using fintech and FPS technology to support SMBs with international transactions that could cut fees by 83%
An%20innovative%20international%20 payment%20collection%20platform%20using%20fintech%20and%20FPS%20technology%20to%20support%20SMBs%20with%20international%20transactions%20that%20could%20cut%20fees%20by%2083%
- 批准号:
10098770 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Collaborative R&D
Antivirus Pandemic Preparedness EuropeAn pLatform (Appeal)
欧洲防病毒大流行准备平台(呼吁)
- 批准号:
10110329 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
EU-Funded
Advanced Modelling Platform with Moving Ventricular Walls for Increasing Speed to Market of Heart Pumps
具有移动心室壁的先进建模平台可加快心脏泵的上市速度
- 批准号:
10071797 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Collaborative R&D
Identification and impact of polymers on stem cell products in an automated biomanufacturing platform
自动化生物制造平台中聚合物对干细胞产品的识别和影响
- 批准号:
10089013 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Collaborative R&D
Efficient and unbiased estimation in adaptive platform trials
自适应平台试验中的高效且公正的估计
- 批准号:
MR/X030261/1 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Research Grant
The South Wales and South West England Mental Health Platform Hub
南威尔士和英格兰西南部心理健康平台中心
- 批准号:
MR/Z503745/1 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Research Grant
Bovine herpesvirus 4 as a vaccine platform for African swine fever virus antigens in pigs
牛疱疹病毒 4 作为猪非洲猪瘟病毒抗原的疫苗平台
- 批准号:
BB/Y006224/1 - 财政年份:2024
- 资助金额:
$ 5万 - 项目类别:
Research Grant