Security Threats to Critical Infrastructure: The Human Factor
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14330%2F18%3A00102471" target="_blank" >RIV/00216224:14330/18:00102471 - isvavai.cz</a>
Result on the web
<a href="https://doi.org/10.1007/s11227-018-2337-2" target="_blank" >https://doi.org/10.1007/s11227-018-2337-2</a>
DOI - Digital Object Identifier
<a href="http://dx.doi.org/10.1007/s11227-018-2337-2" target="_blank" >10.1007/s11227-018-2337-2</a>
Alternative languages
Result language
angličtina
Original language name
Security Threats to Critical Infrastructure: The Human Factor
Original language description
In the twenty-first century, globalisation made corporate boundaries invisible and difficult to manage. This new macroeconomic transformation caused by globalisation introduced new challenges for critical infrastructure management. By replacing manual tasks with automated decision making and sophisticated technology, no doubt we feel much more secure than half a century ago. As the technological advancement takes root, so does the maturity of security threats. It is common that today's critical infrastructures are operated by non-computer experts, e.g. nurses in health care, soldiers in military or firefighters in emergency services. In such challenging applications, protecting against insider attacks is often neither feasible nor economically possible, but these threats can be managed using suitable risk management strategies. Security technologies, e.g. firewalls, help protect data assets and computer systems against unauthorised entry. However, one area which is often largely ignored is the human factor of system security. Through social engineering techniques, malicious attackers are able to breach organisational security via people interactions. This paper presents a security awareness training framework, which can be used to train operators of critical infrastructure, on various social engineering security threats such as spear phishing, baiting, pretexting, among others.
Czech name
—
Czech description
—
Classification
Type
J<sub>imp</sub> - Article in a specialist periodical, which is included in the Web of Science database
CEP classification
—
OECD FORD branch
10200 - Computer and information sciences
Result continuities
Project
—
Continuities
S - Specificky vyzkum na vysokych skolach
Others
Publication year
2018
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Name of the periodical
The Journal of Supercomputing
ISSN
0920-8542
e-ISSN
—
Volume of the periodical
74
Issue of the periodical within the volume
10
Country of publishing house
US - UNITED STATES
Number of pages
17
Pages from-to
4986-5002
UT code for WoS article
000446893600008
EID of the result in the Scopus database
2-s2.0-85044452310