Design a mobile game for home computer users to prevent from "phishing attacks"

International Conference on Information Society, i-Society 2011

Volumn , Issue , 2011, Pages 485-489

  Arachchilage, Nalin Asanka Garnagedara ^a   Cole, Melissa ^a  

^a BRUNEL UNIVERSITY   (United Kingdom)

Author keywords

Avoidance behaviour; Game design; Phishing threats; Security awareness; Security breaches

Indexed keywords

COMPUTER CRIME;

AVOIDANCE BEHAVIOUR; GAME DESIGN; PHISHING; SECURITY AWARENESS; SECURITY BREACHES;

COMPUTER GAMES;

EID: 80052568937     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/i-society18435.2011.5978543     Document Type: Conference Paper

References (30)

1. A. Amory and R. Seagram, "Educational Game Models: Conceptualization and Evaluation", South African Journal of Higher Education, vol. 17 (2), pp. 206-217, 2003.
2. B. Schneier, "Semantic Attacks, The Third Wave of Network Attacks", Crypto-Gram Newsletter, October 2000, Retrieved from http://www.schneier.com/crypto-gram-0010.html. (Accessed date: 02 April 2011.)
3. B. Y. Ng and M. A. Rahim, "A Socio-Behavioral Study of Home Computer Users' Intention to Practice Security", The Ninth Pacific Asia Conference on Information Systems, Bangkok, Thailand, 2005.
4. C. E. Drake, J. J. Oliver and E. J. Koontz, "Mail Frontier Anatomy of a Phishing Email", February 2006, Retrieved from http://www. mailfrontier.com/docs/MF-Phish-Anatomy.pdf.(Accessed example, date: 03 April 2011.)
5. C. L. Anderson and R. Agarwal, "Practicing Safe Computing: Message Framing, Self-View, and Home Computer User Security Behaviour Intentions", International Conference on Information Systems, Milwaukee, WI, pp. 1543-1561, 2006.
6. CNN. com, "A convicted hacker debunks some myths", 2005, http://www.cnn.com/2005/TECH/internet/10/07/kevin.mitnick.cnna/index.html. (Accessed date: 04 April 2011.)
7. D. Parsons, H. Ryu and M. Cranshaw, "A Study of Design Requirements for Mobile Learning Environments", Proceedings of the Sixth IEEE International Conference on Advanced Learning Technologies, pp. 96-100, 2006. (Pubitemid 46591563)
8. E. M. Raybourn and A. Waern, "Social Learning Through Gaming", Proceedings of CHI 2004, Vienna, Austria, pp. 1733-1734,2004
9. H. Liang and Y. Xue, "Avoidance of Information Technology Threats: A Theoretical Perspective", MIS Quarterly, vol. 33 (1), pp. 71-90, 2009.
10. H. Liang and Y. Xue, "Understanding Security Behaviours in Personal Computer Usage: A Threat Avoidance Perspective", Journal of the Association for Information Systems, vol. 11 (7), pp. 394-413, July 2010.
11. H. Susan, A. Catherine and A. Ritu, "Practicing Safe Computing: Message Freaming, Self-View and Home Computer User Security Behaviour Intentions", ICIS 2006 Proceedings, pp. 93, 2006, Retrieved from http://aisel.aisnet.org/icis2006/93. (Accessed date: 15 March 2011.)
12. I. Woon, G. W. Tan and R. Low, "A Protection Motivation Theory Approach to Home Wireless Security", International Conference on Information Systems, Las Vegas, NY., pp. 367-380, 2005.
13. J. Gong and P. Tarasewich, "Guidelines for Handheld Mobile Device Interface Design", Proceedings of Decision Sciences Institute, Annual Meeting, Boston, Massachusetts, pp. 3751-3756, 2004.
14. J. O'Brien, T. Rodden, M. Rouncefield and J. Hughes, "At Home with the Technology: An Ethnographic Study of a Set-Top-Box Trial", ACM Transactions on Computer-Human Interaction, vol. 6 (3), pp.282-308, 1999.
15. J. S. Downs, M. Holbrook and L. F. Cranor, "Behavioural response to phishing risk", Proceedings of the anti-phishing working groups - 2nd annual eCrime researchers summit, pp.37-44, October 2007, Pittsburgh, Pennsylvania, Retrieved from doi>10.1145/1299015.1299019. (Accessed date: 25 March 2011)
16. K. Aytes and C. Terry, "Computer Security and Risky Computing Practices: A Rational Choice Perspective", Journal of Organizational and End User Computing, vol. 16 (2), pp. 22-40, 2004.
17. K. Mitnick and W. L. Simon, "The art of Deception - Controlling the Human Elements of Security", 2002.
18. L. James, "Phishing Exposed", Syngress, Canada, 2005.
19. M. Prensky, "Digital Game-Based Learning Revolution", Digital GameBased Learning, New York, 2001.
20. M. Workman, W. H. Bommer and D. Straub, "Security Lapses and the Omission of Information Security Measures: A Threat Control Model and Empirical Test", Computers in Human Behaviour, vol. 24 (6), pp. 2799-2816,2008.
21. M. Wu, R. Miller, and S. Garfinkel, "Do Security Toolbars Actually Prevent Phishing Attacks?", Posters SOUPS, 2005.
22. P. Kumaraguru, Y. Rhee, A. Acquisti, L. F. Cranor, J. Hong and E. Nunge, "Protecting people from phishing: the design and evaluation of an embedded training email system", Proceedings of the SIGCHI conference on Human Factors in Computing Systems, San Jose, California, USA, April - May 2007.
23. R. G. Brody, E. Mulig and V. Kimball, "Phishing, pharming and identity theft", Journal of Academy of Accounting and Financial Studies, vol. 11, pp. 43-56,2007.
24. R. Richmond, "Hackers set up attacks on home PCs, Financial Firms: study", September 2006, Retrieved from http://www.marketwatch. com/News/Story/Story.aspx?dist=new sfinder&siteid=google&guid= %7B92615073-95B6-452EA3B9 569BEACF91E8%7D&keyword=. (Accessed date: 27 March 2011. )
25. S. A. Robila, J. W. Ragucci, "Don't be a phish: steps in user education", Proceedings of the 11th annual SIGCSE conference on Innovation and technology in computer science education, 26 - 28 June 2006, Bologna, Italy, Retrieved from doi>10.1145/1140124.1140187. (Accessed date: 29 March 201l.)
26. S. Garera, N. Provos, M. Chew, A. D. Rubin, "A framework for detection and measurement of phishing attacks", Proceedings of the 2007 ACM workshop on Recurring malcode, Alexandria, Virginia, USA, November 2007.
27. S. Gorling, "The Myth of User Education", Proceedings of the 16th Virus Bulletin International Conference, Royal Institute of Technology, Department of Industrial Economics and Management (INDEK), 2006.
28. S. Sheng, B. Magnien, P. Kumaraguru, A. Acquisti, L. F. Cranor, J. Hong and E. Nunge, "Anti-Phishing Phil: the design and evaluation of a game that teaches people not to fall for phish", Proceedings of the 3rd symposium on Usable privacy and security, Pittsburgh, Pennsylvania, July 2007.
29. T. Jagatic, N. Johnson, M. Jakobsson and F. Menczer, "Social Phishing", Communications of the ACM, vol. 50 (10), pp. 94-100, 2007. (Pubitemid 47505005)
30. X. Korhonen and X. Koivisto, "Mobile Entertainment: Playability Heuristics for Mobile Games", Proceedings of Mobile HCI, 2006.