This study proposes an innovative multi-layer attack model for cybersecurity that integrates human, access, and network layers. In particular, it focuses on the human layer which has been recently recognized as a still open issue. Drawing on literature, human factors (HFs) that contribute to cyber vulnerabilities and human behaviors that can lead to vulnerabilities are identified. Finally, the research discusses human capabilities that could be leveraged as mitigation factors. By considering the HFs from a twofold perspective, the study provides a holistic approach that accounts for both technical and human elements in cybersecurity management.

A MULTI-LAYER ATTACK MODEL INTEGRATING HUMAN FACTORS IN DELIVERING CYBERSECURITY

Giulia Palombi;
2023-01-01

Abstract

This study proposes an innovative multi-layer attack model for cybersecurity that integrates human, access, and network layers. In particular, it focuses on the human layer which has been recently recognized as a still open issue. Drawing on literature, human factors (HFs) that contribute to cyber vulnerabilities and human behaviors that can lead to vulnerabilities are identified. Finally, the research discusses human capabilities that could be leveraged as mitigation factors. By considering the HFs from a twofold perspective, the study provides a holistic approach that accounts for both technical and human elements in cybersecurity management.
2023
human factors
threat modeling
organizational cybersecurity
cyber attack
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/20.500.12606/10498
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
social impact