Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/41681

Combating Phishing Attacks: A Knowledge Management Approach

File SizeFormat 
paper0532.pdf1.3 MBAdobe PDFView/Open

Item Summary

Title: Combating Phishing Attacks: A Knowledge Management Approach
Authors: Jensen, Matthew
Durcikova, Alexandra
Wright, Ryan
Keywords: experiment
information security
knowledge sharing
phishing attacks
Issue Date: 04 Jan 2017
Abstract: This paper explores how an organization can utilize its employees to combat phishing attacks collectively through coordinating their activities to create a human firewall. We utilize knowledge management research on knowledge sharing to guide the design of an experiment that explores a central reporting and dissemination platform for phishing attacks. The 2x2 experiment tests the effects of public attribution (to the first person reporting a phishing message) and validation (by the security team) of phishing messages on reporting motivation and accuracy. Results demonstrate that knowledge management techniques are transferable to organizational security and that knowledge management can benefit from insights gained from combating phishing. Specifically, we highlight the need to both publicly acknowledge the contribution to a knowledge management system and provide validation of the contribution. As we saw in our experiment, doing only one or the other does not improve outcomes for correct phishing reports (hits).
Pages/Duration: 10 pages
URI/DOI: http://hdl.handle.net/10125/41681
ISBN: 978-0-9981331-0-2
DOI: 10.24251/HICSS.2017.520
Rights: Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections:Confidentiality, Integrity, and Availability of Knowledge and Data Minitrack



Items in ScholarSpace are protected by copyright, with all rights reserved, unless otherwise indicated.