An Enhanced Model for Increasing Awareness of Vocational Students Against Phishing Attacks

Information security for connected devices with network system is under threat due to fraudulent activities, denial-of-service (DoS), and malware. Phishing attacks are a major fraud activity which can be controlled by human factors. This research is aimed to increase the information security awareness of the vocational students in Malaysia. An enhanced knowledge-attitude-behavior model has been developed to increase the awareness level on phishing attacks. In this model, the existing knowledge of the sample students is measured and repeated after educational treatment. The model hypothesis is validated by the collected data on the students and the model output is thoroughly analyzed. Thus, it demonstrates that the proposed model is an enhanced model in strengthening the information security knowledge and awareness of the students.

[1]  Abdulghani Ali Ahmed Investigation Model for Ddos Attack Detection in Real-Time , 2015 .

[2]  Michael Grüninger,et al.  Introduction , 2002, CACM.

[3]  Shikha Singh,et al.  Data Security Issues in Cloud Computing , 2014, CloudCom 2014.

[4]  Jeff Sauro,et al.  Quantifying the User Experience: Practical Statistics for User Research , 2012 .

[5]  Jouni Isoaho,et al.  Information Security Awareness in Educational Institution: An Analysis of Students' Individual Factors , 2015, 2015 IEEE Trustcom/BigDataSE/ISPA.

[6]  Yasser M. Alginahi,et al.  Data protection laws , 2019, Authentication Technologies for Cloud Computing, IoT and Big Data.

[7]  Ayako Komatsu,et al.  Human aspects of information security: An empirical study of intentional versus actual behavior , 2013, Inf. Manag. Comput. Secur..

[8]  Shari Lawrence Pfleeger,et al.  Going Spear Phishing: Exploring Embedded Training and Awareness , 2014, IEEE Security & Privacy.

[9]  Eyong B. Kim,et al.  Recommendations for information security awareness training for college students , 2014, Inf. Manag. Comput. Secur..

[10]  Marti A. Hearst,et al.  Why phishing works , 2006, CHI.

[11]  Malcolm Robert Pattinson,et al.  The Human Aspects of Information Security Questionnaire (HAIS-Q): Two further validation studies , 2017, Comput. Secur..

[12]  Xiaodong Li,et al.  A Hybrid System to Find & Fight Phishing Attacks Actively , 2011, 2011 IEEE/WIC/ACM International Conferences on Web Intelligence and Intelligent Agent Technology.

[13]  Z. ZamliKamal,et al.  Enhancing the Awareness Level on Phishing Attacks Among Malaysians: Analysis and Recommendations , 2018 .