Generic Taxonomy of Social Engineering Attack

Mohd Foozy, F and Ahmad, R. and Abdollah, M. F. and Yusof, R. and Mas'ud, M. Z. (2011) Generic Taxonomy of Social Engineering Attack. In: Malaysian Technical Universities International Conference on Engineering & Technology (MUiCET 2011), 13-15 November 2011, UTHM, Batu Pahat, Johor.

MUiCET_2011_Cik_Feresa_binti_Mohd_Foozy-_by_Feresa.pdf - Accepted Version

Download (275kB)


Social engineering is a type of attack that allows unauthorized access to a system to achieve specific objective. Commonly, the purpose is to obtain information for social engineers. Some successful social engineering attacks get victims’ information via human based retrieval approach, example technique terms as dumpster diving or shoulder surfing attack to get access to password. Alternatively, victims’ information also can be stolen using technical-based method such as from pop-up windows, email or web sites to get the password or other sensitive information. This research performed a preliminary analysis on social engineering attack taxonomy that emphasized on types of technical-based social engineering attack. Results from the analysis become a guideline in proposing a new generic taxonomy of Social Engineering Attack (SEA).

Item Type: Conference or Workshop Item (Paper)
Subjects: Q Science > Q Science (General)
Divisions: Faculty of Information and Communication Technology > Department of System and Computer Communication
Depositing User: Dr. Robiah Yusof
Date Deposited: 05 Dec 2011 01:24
Last Modified: 28 May 2015 02:17
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item