Security and Safety as a Behavior
Prominent approaches to online security and safety are mainly based on technical solutions that provide users with configuration management to set up their access controls and privacy settings. Cybercriminals often defeat cyber security by exploiting weaknesses in human behavior such as their culture, belief systems, and personality.
In Security and Safety as a Behavior (SubProject#4), (Qatar University (QU), HBKU College of Science and Engineering (CSE), Bournemouth University (BU)), we research a behavior-based approach to security and safety. We investigate hacking and social engineering techniques that are successful in the Arab world and propose socio-technical approaches to enhance resilience to manipulators online and encourage reporting. The solutions are based on the approaches of behavior rehearsal, simulation, and social norms.
We want to understand the use of manipulation techniques and their exploitation of the socio-cultural characteristics in Qatar. For example, initial results from one of our PhD students have shown that financial fraud uses family values and commitment in the Gulf area. We will then propose socio-technical approaches to increase attitudinal resilience to online safety and security threats. Furthermore, reporting online manipulation and threats can be challenging due to cultural values and norms. Through our ongoing communication with key informants in this area in Qatar, e.g. SafeSpace program in the Ministry of Communications and Information Technology (MCIT), it seemed that some fear of exposure and a lack of awareness of the privacy and confidentiality settings adopted by the official parties. Hence, we want to provide solutions to motivate people to report and ask for help when they encounter manipulators online.
Objectives
To study techniques used by manipulators in security attacks and social engineering in the Arab world and measure susceptibility to them and reasons why victims refrain from reporting and speaking out.
To research, develop and test intervention techniques to build resilience to online manipulation used in security attacks and social engineering.
To research and test intervention techniques to encourage the reporting of online manipulation.
Meet Security & Safety as a Behavior Team Members...
KHALED KHAN
Security and Safety as a Behavior
ARMSTRONG NHLABATSI
RAIAN ALI
JOHN McALANEY
ALA YANKOUSKAYA
MAHMOUD BARHAMGI
AIMAN ERBAD
SALEM SALEH
ISRAA ABUELEZZ
AYA MUHANAD
TOURJANA SUPTI
Publications
Research Challenges in Information Science, vol. 513, 2024.
How demographic and appearance cues of a potential social engineer influence trust perception and risk-taking among targets? Journal Article
In: Information & Computer Security, 2024.
How do Gender and Age Similarities with a Potential Social Engineer Influence One’s Trust and Willingness to Take Security Risks? Journal Article
In: 2024.
On How Cialdini’s Persuasion Principles Influence Individuals in the Context of Social Engineering: A Qualitative Study Proceedings Article
In: International Conference on Web Information Systems Engineering, pp. 373–388, Springer 2024.
Need for Affect and Need for Cognition vs. Cybersecurity Attitude Proceedings Article
In: International Conference on Web Information Systems Engineering, pp. 416–425, Springer 2024.
The Impact of Personality Traits and Need for Cognition on Cybersecurity Behavior: A Study Across Arab and European Samples Proceedings Article
In: International Conference on Web Information Systems Engineering, pp. 389–401, Springer 2024.
Reporting Social Media Fraud: Motivations, Barriers, and Reporting Mechanism Proceedings Article
In: International Conference on Web Information Systems Engineering, pp. 402–415, Springer 2024.
Resources
Tools
To be added once ready
Datasets
To be added once ready…