Sökning: id:"swepub:oai:DiVA.org:kth-152194" >
Ask and you shall k...
Ask and you shall know : Using interviews and the SBC model for social-engineering penetration testing
-
- Nohlberg, Marcus (författare)
- Högskolan i Skövde,Institutionen för kommunikation och information
-
- Kowalski, Stewart (författare)
- KTH,Data- och systemvetenskap, DSV,Department of Computer and Systems Sciences, Stockholm University/Royal Institute of Technology, Stockholm, Sweden
-
- Karlsson, K. (författare)
- Högskolan i Skövde,Institutionen för kommunikation och information
-
(creator_code:org_t)
- Orlando : International Institute of Informatics and Systemics, 2008
- 2008
- Engelska.
-
Ingår i: IMETI - Int. Multi-Conf. Eng. Technol. Innov., Proc.. - Orlando : International Institute of Informatics and Systemics. - 1934272434 - 9781934272435 ; , s. 121-128
- Relaterad länk:
-
http://www.iiis.org/...
-
visa fler...
-
https://urn.kb.se/re...
-
https://urn.kb.se/re...
-
visa färre...
Abstract
Ämnesord
Stäng
- This paper presents the result of a case study where the SBC model was used as a foundation to perform semi-structured interviews to test the security in a medical establishment. The answers were analyzed and presented in an uncomplicated graph. The purpose was to study the feasibility of letting the users participate, instead of exploiting their weaknesses. It was found that the approach of interviewing the subjects rendered interesting, and relevant, results, making it an approach that should be studied further due to its apparent gains: less ethically troublesome penetration testing, increased awareness, improved coverage and novel information as added bonuses.
Ämnesord
- SAMHÄLLSVETENSKAP -- Sociologi (hsv//swe)
- SOCIAL SCIENCES -- Sociology (hsv//eng)
- TEKNIK OCH TEKNOLOGIER -- Elektroteknik och elektronik -- Datorsystem (hsv//swe)
- ENGINEERING AND TECHNOLOGY -- Electrical Engineering, Electronic Engineering, Information Engineering -- Computer Systems (hsv//eng)
Nyckelord
- Penetration tests
- SBC model
- Social engineering
- Novel information
- Penetration test
- Penetration testing
- Semi structured interviews
- Industrial engineering
- Engineering
Publikations- och innehållstyp
- ref (ämneskategori)
- kon (ämneskategori)
Hitta via bibliotek
Till lärosätets databas