Islam, T;
Becker, I;
Posner, R;
Ekblom, P;
McGuire, M;
Borrion, H;
Li, S;
(2019)
A Socio-Technical and Co-Evolutionary Framework for Reducing Human-Related Risks in Cyber Security and Cybercrime Ecosystems.
In: Wang, G and Bhuiyan, M and De Capitani, di Vimercati S and Ren Y, Y, (eds.)
Communications in Computer and Information Science.
Springer: Singapore.
Preview |
Text
ACCEPT_architecture_paper_ingolf_homepage_copy.pdf - Accepted Version Download (2MB) | Preview |
Abstract
The focus on cyber security as an interaction between technical elements and humans has typically confined consideration of the latter to practical issues of implementation, conventionally those of ‘human performance factors’ of vigilance etc., ‘raising awareness’ and/or ‘incentivization’ of people and organizations to participate and adapt their behavior. But this is far too narrow a view that seriously constrains the ability of cyber security as a whole to adapt and evolve to keep up with adaptive, innovative attackers in a rapidly-changing technological, business and social landscape, in which personal preferences of users are also dynamically evolving. While there is isolated research across different research areas, we noticed the lack of a holistic framework combining a range of applicable theoretical concepts (e.g., cultural co-evolution such as technological arms races, opportunity management, behavioral and business models) and technological solutions on reducing human-related risks in the cyber security and cybercrime ecosystems, which involve multiple groups of human actors including offenders, victims, preventers and promoters. This paper reports our ongoing work in developing such a socio-technical framework (1) to allow a more comprehensive understanding of human-related risks within cyber security and cybercrime ecosystems and (2) to support the design of more effective approaches to engaging individuals and organizations in the reduction of such risks. We are in the process of instantiating this framework to encourage behavioral changes in two use cases that capture diverse and complicated socio-technical interactions in cyber-physical systems.
| Type: | Proceedings paper |
|---|---|
| Title: | A Socio-Technical and Co-Evolutionary Framework for Reducing Human-Related Risks in Cyber Security and Cybercrime Ecosystems |
| Event: | The 5th International Conference on Dependability in Sensor, Cloud, and Big Data Systems and Applications (DependSys 2019) |
| Location: | Guangzhou, China |
| Dates: | 12 November 2019 - 15 November 2019 |
| ISBN: | 978-981-15-1303-9 |
| Open access status: | An open access version is available from UCL Discovery |
| DOI: | 10.1007/978-981-15-1304-6_22 |
| Publisher version: | https://doi.org/10.1007/978-981-15-1304-6_22 |
| Language: | English |
| Additional information: | This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions. |
| Keywords: | Socio-technical, Framework, Human factors, Human behavior, Risk management, Cyber security, Cybercrime, Co-evolution, Ontology, Transportation, Human-as-a-Security-Sensor (HaaSS), Crime prevention |
| UCL classification: | UCL UCL > Provost and Vice Provost Offices > UCL BEAMS UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Security and Crime Science |
| URI: | https://discovery.ucl.ac.uk/id/eprint/10082157 |
Archive Staff Only
 |
View Item |
