SciELO - Scientific Electronic Library Online

 
vol.109 issue2 author indexsubject indexarticles search 		Home Pagealphabetic serial listing  

Services on Demand

Article

Indicators

Related links

  • On index processCited by Google
  • On index processSimilars in Google

Share

SAIEE Africa Research Journal

On-line version ISSN 1991-1696
Print version ISSN 0038-2221

Abstract

MOUTON, Francois; NOTTINGHAM, Alastair; LEENEN, Louise  and  VENTER, H.S. Finite state machine for the social engineering attack detection model: SEADM. SAIEE ARJ [online]. 2018, vol.109, n.2, pp.133-147. ISSN 1991-1696.

Information security is a fast-growing discipline, and relies on continued improvement of security measures to protect sensitive information. Human operators are one of the weakest links in the security chain as they are highly susceptible to manipulation. A social engineering attack targets this weakness by using various manipulation techniques to elicit individuals to perform sensitive requests. The field of social engineering is still in its infancy with respect to formal definitions, attack frameworks, and examples of attacks and detection models. In order to formally address social engineering in a broad context, this paper proposes the underlying abstract finite state machine of the Social Engineering Attack Detection Model (SEADM). The model has been shown to successfully thwart social engineering attacks utilising either bidirectional communication, unidirectional communication or indirect communication. Proposing and exploring the underlying finite state machine of the model allows one to have a clearer overview of the mental processing performed within the model. While the current model provides a general procedural template for implementing detection mechanisms for social engineering attacks, the finite state machine provides a more abstract and extensible model that highlights the inter-connections between task categories associated with different scenarios. The finite state machine is intended to help facilitate the incorporation of organisation specific extensions by grouping similar activities into distinct categories, subdivided into one or more states. The finite state machine is then verified by applying it to representative social engineering attack scenarios from all three streams of possible communication. This verifies that all the capabilities of the SEADM are kept in tact, whilst being improved, by the proposed finite state machine.

Keywords : Bidirectional Communication; Finite State Machine; Indirect Communication; Social Engineering; Social Engineering Attack Examples; Social Engineering Attack Detection Model; Social Engineering Attack Framework; Unidirectional Communication.

        · text in English     · English ( pdf )

 

Creative Commons License All the contents of this journal, except where otherwise noted, is licensed under a Creative Commons Attribution License

South African Institute of Electrical Engineers,
Observatory, Johannesburg, Gauteng, ZA, 2198,
Tel: +27 11 487 3003