Cognition in Social Engineering Empirical Research: A Systematic Literature Review

Pavlo Burda (Corresponding author), Luca Allodi (Corresponding author), Nicola Zannone (Corresponding author)

Onderzoeksoutput: Bijdrage aan tijdschriftTijdschriftartikelAcademicpeer review

4 Citaten (Scopus)
72 Downloads (Pure)

Samenvatting

The interdisciplinarity of the Social Engineering (SE) domain creates crucial challenges for the development and advancement of empirical SE research, making it particularly difficult to identify the space of open research questions that can be addressed empirically. This space encompasses questions on attack conditions, employed experimental methods, and interactions with underlying cognitive aspects. As a consequence, much potential in the breadth of existing empirical SE research and in its mapping to the actual cognitive processes it aims to measure is left untapped. In this work, we carry out a systematic review of 169 articles investigating overall 735 hypotheses in the field of empirical SE research, focusing on experimental characteristics and core cognitive features from both attacker and target perspectives. Our study reveals that experiments only partially reproduce real attacks and that the exploitable SE attack surface appears much larger than the coverage provided by the current body of research. Factors such as targets' context and cognitive processes are often ignored or not explicitly considered in experimental designs. Similarly, the effects of different pretexts and varied targetization levels are overall marginally investigated. Our findings on current SE research dynamics provide insights into methodological shortcomings and help identify supplementary techniques that can open promising future research directions.

Originele taal-2Engels
Artikelnummer19
Aantal pagina's55
TijdschriftACM Transactions on Computer-Human Interaction
Volume31
Nummer van het tijdschrift2
DOI's
StatusGepubliceerd - apr. 2024

Bibliografische nota

Publisher Copyright:
© 2024 Copyright held by the owner/author(s).

Financiering

This work is supported by the INTERSCT project, Grant No. NWA.1162.18.301, and by the SeReNity project, Grant No. cs.010, both funded by Netherlands Organisation for Scientific Research (NWO).

FinanciersFinanciernummer
Nederlandse Organisatie voor Wetenschappelijk Onderzoek

    Vingerafdruk

    Duik in de onderzoeksthema's van 'Cognition in Social Engineering Empirical Research: A Systematic Literature Review'. Samen vormen ze een unieke vingerafdruk.

    Citeer dit