On Tools for Socio-Technical Security Analysis

Interdisciplinary Research Group in Socio-technical Cybersecurity

On Tools for Socio-Technical Security Analysis

Ferreira Ana, Giustolisi Rosario, Huynen Jean-Louis, Lenzini Gabriele
Abstract:
Many systems are hacked daily and apparently without much effort. This happens because hackers prefer not to break security mechanisms immediately, but rather to target unguarded components first. Such components, e.g., users and human-computer ceremonies, are hacked by exploiting cognitive features (e.g., trust) and people’s dismay with ill-designed interfaces. These user-related components are often ignored in traditional security analysis. Thus, it should not surprise that systems proved secure may fail especially when they run in different contexts from those wherein they have been proven secure.
Authors:
Ferreira Ana, Giustolisi Rosario, Huynen Jean-Louis, Lenzini Gabriele
Publication date:
April, 2013
Published in:
Reference:
Ferreira, A., Giustolisi, R., Huynen, J. L., & Lenzini, G. (2013). On tools for socio-technical security analysis.

Get in touch with us

SnT – Interdisciplinary Centre for Security, Reliability and Trust
29, Avenue J.F Kennedy L-1855 Luxembourg
info-irisc-lab@uni.lu