Incorporating the human facet of security in developing systems and services

Naqvi, Bilal; Clarke, Nathan; Porras, Jari

doi:10.1108/ics-11-2019-0130

Cited by 3 publications

(2 citation statements)

References 26 publications

(58 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Human factors and cyber-security have evolved as two different domains [7]. Expertise in both these domains (human factors and security) is hard to find in one person [8,9], therefore, developers don't often consider the fact that the security systems and services without consideration of human factors despite being secure against known vulnerabilities could still be susceptible to users' mistakes leading to a breach. Therefore, there is a need for providing training on usability and usable security both at the educational institutions and work [10].…”

Section: Training and Supporting Developers At Workmentioning

confidence: 99%

Coping with Changing Contexts: A Healthcare Security Perspective

Naqvi

Ardito

2022

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

With the fourth industrial revolution, there is a digitization wave going on for the transformation of existing systems into modern digital systems. This has opened the window for many opportunities, but at the same time, there is a multitude of cyber-security threats that need to be addressed. This paper considers one such threat posed by phishing and ransomware attacks to the healthcare infrastructures. Phishing has also been the most prevalent attack mechanism on the healthcare infrastructures during the ongoing COVID-19 pandemic. The paper proposes two intervention strategies as a step towards catering to the challenges posed by phishing and ransomware attacks in the context of healthcare infrastructures.

show abstract

Section: Training and Supporting Developers At Workmentioning

confidence: 99%

Coping with Changing Contexts: A Healthcare Security Perspective

Naqvi

Ardito

2022

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

“…A good design pattern produces a perfect software design [1,5]. Most of the time, software engineers reuse existing design patterns for developing software systems and for solving similar issues such as errors, high costs, and high time consumption [2,6]. There are many design patterns on the internet for reusing purposes.…”

Section: Introductionmentioning

confidence: 99%

The Malware Detection Approach in the Design of Mobile Applications

et al. 2022

View full text Add to dashboard Cite

Background: security has become a major concern for smartphone users in line with the increasing use of mobile applications, which can be downloaded from unofficial sources. These applications make users vulnerable to penetration and viruses. Malicious software (malware) is unwanted software that is frequently used by cybercriminals to launch cyber-attacks. Therefore, the motive of the research was to detect malware early before infection by discovering it at the application-design level and not at the code level, where the virus will have already damaged the system. Methods: in this article, we proposed a malware detection method at the design level based on reverse engineering, the unified modeling language (UML) environment, and the web ontology language (OWL). The proposed method detected “Data_Send_Trojan” malware by designing a UML model that simulated the structure of the malware. Then, by generating the ontology of the model, and using RDF query language (SPARQL) to create certain queries, the malware was correctly detected. In addition, we proposed a new classification of malware that was suitable for design detection. Results: the proposed method detected Trojan malware that appeared 552 times in a sample of 600 infected android application packages (APK). The experimental results showed a good performance in detecting malware at the design level with precision and recall of 92% and 91%, respectively. As the dataset increased, the accuracy of detection increased significantly, which made this methodology promising.

show abstract

Dissecting the Security and Usability Alignment in the Industry

Naqvi

2022

Human-Centered Software Engineering

View full text Add to dashboard Cite

Incorporating the human facet of security in developing systems and services

Cited by 3 publications

References 26 publications

Coping with Changing Contexts: A Healthcare Security Perspective

Coping with Changing Contexts: A Healthcare Security Perspective

The Malware Detection Approach in the Design of Mobile Applications

Dissecting the Security and Usability Alignment in the Industry

Contact Info

Product

Resources

About