Open access repository

Home Open access repository

In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).

» Openaccess proceedings » 5th International Symposium on Human Aspects of Information Security and Assurance (HAISA 2011)

5th International Symposium on Human Aspects of Information Security and Assurance (HAISA 2011)

5th International Symposium on Human Aspects of Information Security and Assurance (HAISA 2011)
London, UK, July 7-8, 2011
ISBN: 978-1-84102-284-0

Title: Managing Phishing Emails: A Scenario-Based Experiment
Author(s): Malcolm Pattinson, Cate Jerram, Kathryn Parsons, Agata McCormac, Marcus Butavicius
Reference: pp74-85
Keywords: Information security (InfoSec), Information risk, Phishing, Social engineering, Human behaviour
Abstract: In this paper, the authors report on a collaborative research project that investigates how people respond to phishing emails compared to genuine emails and what factors contribute to this behaviour. A scenario-based, role-play experiment was conducted by administering a web-based questionnaire via a series of seminars facilitated by a member of the research team. This questionnaire asked each of the 117 participants to evaluate 50 emails – half that were genuine and half that were phishing emails. In addition, demographic, personality and cognitive information was elicited from each participant. The major findings of this preliminary investigation indicate that personal characteristics such as familiarity with computers, extraversion, openness and cognitive impulsivity each have a significant positive effect on an email user’s response to phishing emails.
Download count: 1430

How to get this paper:

Download a free PDF copy of this paperBuy this book at Lulu.com

PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.