Assessment of participants vulnerability to phishing within network gamified projects in the field of information security
Автор: Safonov K.V., Zolotarev V.V.
Журнал: Вестник Красноярского государственного педагогического университета им. В.П. Астафьева @vestnik-kspu
Рубрика: Теория и методика профессионального образования
Статья в выпуске: 2 (52), 2020 года.
Бесплатный доступ
Statement of the problem. The article deals with issues related to secure interaction within a gamified educational environment, in particular in the field of game cases used for information security training. The main threats discussed below are the implementation of various types of phishing attacks. Experimental data are shown on the evaluation of some parameters of project groups implemented in the social network. An algorithm for evaluating the vulnerability of participants in network gamified projects to phishing attacks is also provided. The purpose of the article is focused on developing an approach to assessing the danger of phishing as a way to destroy or negatively use group interaction from the point of view of information security applicable to case study projects. The research methodology consists of an analysis of current gaming practices in the framework of information security training; the study of the results of interdisciplinary research by Russian and foreign scientists on the use of gamification in various training tasks, game environments and solutions, and their evaluation. Research results. Author’s recommendations for assessing the vulnerability of participants in network gamified educational projects to phishing attacks were developed, a review of related works and contradictions was performed, and restrictions were shown. Conclusion. Based on the results of the experiment, it is shown that network interaction can be evaluated, and the results of the evaluation can be used to predict the development of phishing attacks in network gamified educational projects. The author’s recommendations considered in the article can be applied during the training of masters in the field of training: 10.04.01 Information security (full-time training).
Training, information security, serious games, gamification, phishing, social network
Короткий адрес: https://sciup.org/144161862
IDR: 144161862 | DOI: 10.25146/1995-0861-2020-52-2-201