Social attackability metrics for software systems

dc.contributor.authorMbuguah, Samuel Mungai
dc.contributor.authorMwangi, Waweru
dc.contributor.authorSong, Pang Chol
dc.contributor.authorMuketha, Geoffrey Muchiri
dc.date.accessioned2019-03-20T16:28:08Z
dc.date.available2019-03-20T16:28:08Z
dc.date.issued2013
dc.description.abstractSoftware based system have become ubiquitous in modern day activities. Software system based system are being increasing attacked, leading to the need for software system administrators, and managers to have some metrics at predicting the social engineering attackability of a such system. Researchers have identified seven human traits/attributes that make human susceptible to social engineering attacks. Yet they did not model nor come up metrics. The author has published a conceptual a holistic predictive attackability metric model and corresponding metrics to assist the system designers. The model considers the technical metrics based on cohesion, coupling and complexity as used to predict attackability. It also consider the social metrics based on human traits that make the human operators become susceptible to social engineering attacks. The identified human traits are dishonesty, social compliance, Kindness,Time pressure, Herd mentality, greed/need and distraction. This paper considers only the social metrics part of the model.To measure human traits the authors relies on the HEXACO model and Big Five personality trait models. In these model the personality trait are measured using a ranking scale based on Lickert scale. Hence each trait is measured as a percentile. However, for purpose of this paper, to postulate the metric the author considered the discrete case. Why the value of trait take either a value of “1” or “0”. To determine the relationship between traits between and attackability experts were asked to assess the trait versus attackability from which after aggregating for all traits a social attackability metrics was determined. To determine the predictive social attackability metrics each trait was considered to be equally likely to occur and hence a probability of 1/7 and this acts as factor to transform the social attackability metric into predictive attackability metrics.en_US
dc.identifier.issn2223-4985
dc.identifier.urihttp://erepository.kibu.ac.ke/handle/123456789/299
dc.language.isoenen_US
dc.publisherInternational Journal of Information and Communication Technology Researchen_US
dc.rightsAttribution-NonCommercial-ShareAlike 3.0 United States*
dc.rights.urihttp://creativecommons.org/licenses/by-nc-sa/3.0/us/*
dc.subjectProbabilityen_US
dc.subjectMetricsen_US
dc.subjectattackabilityen_US
dc.subjectattributes/traitsen_US
dc.subjectmodelen_US
dc.titleSocial attackability metrics for software systemsen_US
dc.typeArticleen_US

Files

Original bundle

Now showing 1 - 1 of 1
No Thumbnail Available
Name:
Social Attackability Metrics for Software Systems.pdf
Size:
487.75 KB
Format:
Adobe Portable Document Format

License bundle

Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.71 KB
Format:
Item-specific license agreed upon to submission
Description: