Ontology Formation For Publications On Social Engineering
ABSTRACT One of the significant activities of the nations in the present days is how information is exchanged by different forms of media, which reflects the importance of knowledge sharing. Currently this sharing of knowledge between objectives is obtained in a very ad-hoc fashion and lacks appropr...
Saved in:
Summary: | ABSTRACT One of the significant activities of the nations in the present days is how information is exchanged by different forms of media, which reflects the importance of knowledge sharing. Currently this sharing of knowledge between objectives is obtained in a very ad-hoc fashion and lacks appropriate comprehension of the data meaning. Therefore, in order to facilitate the reuse and knowledge sharing, ontologies must be used in this situation. Social engineering, or what is known as the art of mind's penetration, is a collection of techniques used to make people do something or to declare about confidential information. Social engineering is defined as a way to gain valuable information about the system from people in general, where any attacker using little owned information to win the confidence of his victim, this trust, leads the victim to provide sensitive information to attacker through which can be discovered the properties of the system. The social engineering ontology includes a formal and explicit representation of the terms describing social engineering types such as human-based attacks and technical-based attacks, threats, and countermeasures. The stages used for this implementation form the methodology that has been suggested by Noy and McGuiness (2000) for the purpose of developing ontologies. This study, based on the findings in the literature, develops social engineering taxonomy consisting of two major categories, interprets the findings in a taxonomic hierarchy and develops social engineering ontology by using Protégé software. Therefore, this research aims to compile related publications on social engineering from selected databases. This study also aims to develop a collection of related terms (taxonomy) based on the extraction of publications related on social engineering, in order to facilitate information and knowledge sharing as well as knowledge reuse on social engineering. |
---|