ISU Electrical and Computer Engineering Archives

Information technology social engineering: an academic definition and study of social engineering - analyzing the human firewall

Evans, Nathaniel (2009) Information technology social engineering: an academic definition and study of social engineering - analyzing the human firewall. PhD thesis, Iowa State University.

Full text available as:

PDF - Requires Adobe Acrobat Reader or other PDF viewer.

Abstract

People have knowledge and people control knowledge, whether through a computer, papers or memory, people are ultimately in charge and people are a hole in security. In order to fully understand security, people must be understood, specifically people’s relationship with information technology networks. The most common attack against people on information technology networks is called ‘social engineering.’ When social engineering is explored many psychological concepts arise including Neuro-Linguistic Programming and even historical parallels with the Nazi government. Exploring these ideas with the slant of information technology networks helps define and organize the problem of social engineering. If the problem of social engineering across information technology networks can be understood, eventually solutions can exist, which increase the security of knowledge and eliminate the hole people create.

EPrint Type:Thesis (PhD)
Uncontrolled Keywords:Social Engineering, Nazi manipulation, Psychology, Security, confidence man
Subjects:Computer Engineering > INFORMATION SYSTEMS SECURITY & NETWORKING > Information Assurance
Computer Engineering > INFORMATION SYSTEMS SECURITY & NETWORKING > Computer Networking and Security
ID Code:504
Identification Number:Identification Number UNSPECIFIED
Deposited By:Mr Nathaniel Evans
Deposited On:08 July 2009

Archive Staff Only: edit this record