Phishing and Organisational Learning - Security and Privacy Protection in Information Processing Systems Access content directly
Conference Papers Year : 2013

Phishing and Organisational Learning

Wayne D. Kearney
  • Function : Author
  • PersonId : 1001120
Hennie A. Kruger
  • Function : Author
  • PersonId : 1001052

Abstract

The importance of addressing the human aspect in information security has grown over the past few years. One of the most frequent techniques used to obtain private or confidential information from humans is phishing. One way to combat these phishing scams is to have proper security awareness programs in place. In order to enhance the awareness and educational value of information security awareness programs, it is suggested that an organisational learning model, characterised by so called single-loop and double-loop learning, be considered. This paper describes a practical phishing experiment that was conducted at a large organisation and shows how a learning process was initiated and how security incidents such as phishing can be used successfully for both single and double-loop learning.
Fichier principal
Vignette du fichier
978-3-642-39218-4_28_Chapter.pdf (1.99 Mo) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01463839 , version 1 (09-02-2017)

Licence

Attribution

Identifiers

Cite

Wayne D. Kearney, Hennie A. Kruger. Phishing and Organisational Learning. 28th Security and Privacy Protection in Information Processing Systems (SEC), Jul 2013, Auckland, New Zealand. pp.379-390, ⟨10.1007/978-3-642-39218-4_28⟩. ⟨hal-01463839⟩
63 View
200 Download

Altmetric

Share

Gmail Facebook X LinkedIn More