Understanding of Human Factors in Cybersecurity: A Systematic Literature Review

2021 International Conference on Computational Performance Evaluation (ComPE) Pub Date : 2021-12-01 DOI:10.1109/ComPE53109.2021.9752358

Rohani Rohan, Suree Funilkul, Debajyoti Pal, W. Chutimaskul

{"title":"Understanding of Human Factors in Cybersecurity: A Systematic Literature Review","authors":"Rohani Rohan, Suree Funilkul, Debajyoti Pal, W. Chutimaskul","doi":"10.1109/ComPE53109.2021.9752358","DOIUrl":null,"url":null,"abstract":"Cybersecurity is paramount for all public and private sectors for protecting their information systems, data, and digital assets from cyber-attacks; thus, relying on technology-based protections alone will not achieve this goal. This work examines the role of human factors in cybersecurity by looking at the top-tier conference on Human Factors in Cybersecurity over the past 6 years. A total of 24 articles were selected for the final analysis. Findings show that most of the authors used a quantitative method, where survey was the most used tool for collecting the data, and less attention has been paid to the theoretical research. Besides, three types of users were identified: university-level users, organizational-level users, and unspecified users. Culture is another less investigated aspect, and the samples were biased towards the western community. Moreover, 17 human factors are identified; human awareness, privacy perception, trust perception, behavior, and capability are the top five among them. Also, new insights and recommendations are presented.","PeriodicalId":211704,"journal":{"name":"2021 International Conference on Computational Performance Evaluation (ComPE)","volume":"42 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Computational Performance Evaluation (ComPE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ComPE53109.2021.9752358","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

Cybersecurity is paramount for all public and private sectors for protecting their information systems, data, and digital assets from cyber-attacks; thus, relying on technology-based protections alone will not achieve this goal. This work examines the role of human factors in cybersecurity by looking at the top-tier conference on Human Factors in Cybersecurity over the past 6 years. A total of 24 articles were selected for the final analysis. Findings show that most of the authors used a quantitative method, where survey was the most used tool for collecting the data, and less attention has been paid to the theoretical research. Besides, three types of users were identified: university-level users, organizational-level users, and unspecified users. Culture is another less investigated aspect, and the samples were biased towards the western community. Moreover, 17 human factors are identified; human awareness, privacy perception, trust perception, behavior, and capability are the top five among them. Also, new insights and recommendations are presented.

查看原文本刊更多论文

网络安全中的人为因素:系统文献综述

网络安全对于所有公共和私营部门保护其信息系统、数据和数字资产免受网络攻击至关重要;因此，仅依靠基于技术的保护将无法实现这一目标。本研究通过回顾过去6年网络安全中的人为因素顶级会议，考察了人为因素在网络安全中的作用。最终选取了24篇文章进行分析。研究结果表明，大多数作者采用定量方法，调查是收集数据的最常用工具，对理论研究的关注较少。此外，还确定了三种类型的用户:校级用户、组织级用户和未指定用户。文化是另一个较少调查的方面，样本偏向于西方社区。此外，还确定了17个人为因素;其中，人的意识、隐私感知、信任感知、行为和能力排在前五位。此外，还提出了新的见解和建议。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 International Conference on Computational Performance Evaluation (ComPE)

自引率

0.00%

发文量