Authors
Peter Schaab, Kristian Beckers, Sebastian Pape
Publication date
2017/6/12
Source
Information & Computer Security
Volume
25
Issue
2
Pages
206-222
Publisher
Emerald Publishing Limited
Description
Purpose
This paper aims to outline strategies for defence against social engineering that are missing in the current best practices of information technology (IT) security. Reason for the incomplete training techniques in IT security is the interdisciplinary of the field. Social engineering is focusing on exploiting human behaviour, and this is not sufficiently addressed in IT security. Instead, most defence strategies are devised by IT security experts with a background in information systems rather than human behaviour. The authors aim to outline this gap and point out strategies to fill the gaps.
Design/methodology/approach
The authors conducted a literature review from viewpoint IT security and viewpoint of social psychology. In addition, they mapped the results to outline gaps and analysed how these gaps could be filled using established methods from social psychology and discussed the findings.
Findings
The authors …
Total citations
2017201820192020202120222023202431913107127
Scholar articles