Show simple item record

dc.contributor.authorGhafir, Ibrahim
dc.contributor.authorSaleem, J.
dc.contributor.authorHammoudeh, M.
dc.contributor.authorFaour, H.
dc.contributor.authorPrenosil, V.
dc.contributor.authorJaf, S.
dc.contributor.authorJabbar, S.
dc.contributor.authorBaker, T.
dc.date.accessioned2020-01-24T12:37:25Z
dc.date.accessioned2020-02-05T15:36:48Z
dc.date.available2020-01-24T12:37:25Z
dc.date.available2020-02-05T15:36:48Z
dc.date.issued2018-10
dc.identifier.citationGhafir I, Saleem J, Hammoudeh M et al (2018) Security threats to critical infrastructure: the human factor. The Journal of Supercomputing. 74: 4986-5002.en_US
dc.identifier.urihttp://hdl.handle.net/10454/17618
dc.descriptionYesen_US
dc.description.abstractIn the twenty-first century, globalisation made corporate boundaries invisible and difficult to manage. This new macroeconomic transformation caused by globalisation introduced new challenges for critical infrastructure management. By replacing manual tasks with automated decision making and sophisticated technology, no doubt we feel much more secure than half a century ago. As the technological advancement takes root, so does the maturity of security threats. It is common that today’s critical infrastructures are operated by non-computer experts, e.g. nurses in health care, soldiers in military or firefighters in emergency services. In such challenging applications, protecting against insider attacks is often neither feasible nor economically possible, but these threats can be managed using suitable risk management strategies. Security technologies, e.g. firewalls, help protect data assets and computer systems against unauthorised entry. However, one area which is often largely ignored is the human factor of system security. Through social engineering techniques, malicious attackers are able to breach organisational security via people interactions. This paper presents a security awareness training framework, which can be used to train operators of critical infrastructure, on various social engineering security threats such as spear phishing, baiting, pretexting, among others.en_US
dc.language.isoenen_US
dc.rights© The Author(s) 2018. This article is distributed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made.en_US
dc.subjectCritical infrastructure securityen_US
dc.subjectSecurity awarenessen_US
dc.subjectCyber security trainingen_US
dc.subjectWork-based security trainingen_US
dc.subjectSecurity threats against critical infrastructureen_US
dc.titleSecurity threats to critical infrastructure: the human factoren_US
dc.status.refereedYesen_US
dc.date.application2018-03-26
dc.typeArticleen_US
dc.type.versionPublished versionen_US
dc.identifier.doihttps://doi.org/10.1007/s11227-018-2337-2
dc.date.updated2020-01-24T12:37:28Z
refterms.dateFOA2020-02-05T15:37:15Z
dc.date.accepted2018


Item file(s)

Thumbnail
Name:
Securitythreatstocriticalinfra ...
Size:
1.059Mb
Format:
PDF
Description:
Ghafir_Journal_of_Supercomputing

This item appears in the following Collection(s)

Show simple item record