This paper explains the main innovation of a risk assessment tool, called RISK-DET, which will include an ICT risk awareness aspect supported by a specific application: Voozio 2.0. The design of the RISK-DET tool considers the implementation of the emergent ICT (Information and Communication Technology) Risk Detection Skill (IRDS) concept. Today, the users' inability to detect a risk situation is a real security problem and represents a societal challenge. According to the results of a security experiment based on a malicious smartphone application called Voozio 1.0, the main reason for this problem is the absence of effective ICT security awareness training programs adapted to users' needs. To prove and confirm this hypothesis, we aim to evolve the Voozio application in the 2.0 version. This new version will be able to determine the ability of ICT users to detect a risk situation and improve it by combining cognitive sciences and education technologies. We will describe here the specifications of the new version of Voozio. We also present the Voozio 2.0 implementation framework.
[1]
Alexandre Gazet,et al.
Comparative analysis of various ransomware virii
,
2010,
Journal in Computer Virology.
[2]
M. Yar.
The Novelty of ‘Cybercrime’
,
2005
.
[3]
Romain Martin,et al.
An application to estimate the cyber-risk detection skill of mobile device users (IDEA)
,
2013
.
[4]
Xin Luo,et al.
Awareness Education as the Key to Ransomware Prevention
,
2007,
Inf. Secur. J. A Glob. Perspect..
[5]
Peter Kulchyski.
and
,
2015
.
[7]
P. Cochat,et al.
Et al
,
2008,
Archives de pediatrie : organe officiel de la Societe francaise de pediatrie.
[8]
K. Andolsek,et al.
Risk assessment
,
2003,
Nature.
[9]
Rossouw von Solms,et al.
Information security awareness: educating your users effectively
,
1998,
Inf. Manag. Comput. Secur..
[10]
Pieter H. Hartel,et al.
Cyber-crime Science = Crime Science + Information Security
,
2010
.