Global ETD Search

81	Implementing a Nudge to Prevent Email Phishing Vitek, Viktor, Syed Shah, Taqui January 2019 (has links) Phishing is a reoccurring issue, which uses social engineering as an attack strategy. The prevention of these attacks is often content-based filters. These solutions are however not always perfect, and phishing emails can still be able to get through the filters. We suggest a new strategy to combat phishing. The strategy is a technical platform which uses the psychology concept nudge. Nudge is a concept that can be used to change a certain behaviour, in this case to make people more cautious when reading their emails.The objective of this thesis is to suggest a nudge using a technical platform regarding possible desensitization. The nudge aims to change email related behaviours to more healthy ones. To get indications if the nudge has benefits, a qualitative survey was made. When using a psychology-based solution, one must address the possibility of desensitization. To minimize possible desensitization, a quantitative analysis was made where different ways to minimize desensitization were assessed. Data for this analysis was gathered by a simulation modeling, where the simulation aimed to replicate a user performing email related events.The conclusion of the simulation results showed that a whitelist approach was the most appropriate for our nudge. The approach minimized the chance of possible desensitization while having a low risk of not performing a nudge when needed. The conclusion of the survey results was that there was an indication of behavioural change and that there existed a risk of possible desensitization. / Nätfiske är ett återkommande problem, som använder sig av social manipulation som attackstrategi. Försvar mot dessa attacker är ofta innehållsbaserade filter. Dessa lösningar är inte alltid perfekta, då nätfiske kan ibland gå förbi filterna. Vi föreslår en ny strategi för att bekämpa nätfiske. Strategin är en teknisk plattform som använder det psykologiska konceptet nudge. Nudge är ett koncept som kan användas för att ändra ett visst beteende, i detta fall för att göra människor mer försiktiga när de läser sina emails.Syftet med detta arbete är att föreslå en nudge i en teknisk plattform där man tar hänsyn till eventuell desensibilisering. Nudgens mål är att ändra emailrelaterade beteenden så att beteendena blir säkrare. En kvalitativ undersökning gjordes för att få indikationer om nudgen har möjliga fördelar. När man använder en psykologibaserad lösning så måste man ta itu med möjligheten av desensibilisering. En kvantitativ analys gjordes där olika sätt att minimera desensibilisering bedömdes, för att sedan kunna minimera desensibiliseringen. Data för denna analys samlades in genom en simuleringsmodellering, där simuleringens syfte var att replikera en användare som utför email-relaterade händelser.Slutsatsen av simuleringsresultaten visade att en whitelist-metod var den mest lämpliga för vår nudge. Metoden minimerade risken för möjlig desensibilisering, samtidigt som den hade en låg risk att inte utföra en nudge när det behövdes. Slutsatsen av undersökningsresultatet från enkäten var att det fanns en indikation för beteendeförändringar och att det fanns en risk för eventuell desensibilisering av nudgen. Computer and Information Sciences Data- och informationsvetenskap
82	Constructing the Ideal Parent in Post-Genocide Rwanda : Social Engineering and Informality in Kigali Settlements after Genocide Palacios, Amanda January 2022 (has links) Previous studies of post-genocide Rwanda illutrates how nation-building and the government’s urgency to break with the past results in aims to rearrange society in order to prevent further violence and hostility. Developmental aims are also embedded in the broader project of post-genocide nation-building, adapted to promote a new and improved way of life after the genocide. This thesis examines the local experiences of parents in post-genocide Rwanda, with the specific geographical focus on the capital city of Kigali. Based on an ethnographic data collection from spring 2022, this thesis deals with the local experience of top-down rearrangements among parents in “informal” settlements in Kigali. Governmental perceptions of informality highlight the issue of risk in the urban context of post-genocide Kigali. Characterized by lack of order and formality the neighborhoods are deemed as excluded from the new societal modes and norms in the post-genocide aims of social engineering. This thesis uses the theory social engineering by James Scott (1998) to highlight the top-down measures intended to rearrange the lives of parents in “informal” settlements in Kigali. Additionally, the theoretical perspective of parenting culture is applied in order to explore the targeted regulations of parenting, as a result of government’s special interest in children as “future members of the nation” in a post-genocide context. This thesis shows that parenting culture is especially targeted by top-down regulations as a risk preventing strategy to shape the future of the nation. Working with a bottom-up perspective on top- down measures of social engineering the thesis includes the theoretical perspective of governmentality described by Mitchell Dean (2010) and Tania Murray Li (2007). Through mechanisms of self-regulation and accountability the thesis shows how regulations of parents in “informal” settlements are contested by their lack of ability and willingness to integrate top-down social engineering as meaningful rearrangements in everyday life. Post-Genocide Rwanda Informal Settlements Social Engineering Governmentality Parenting Culture Genocide Studies Anthropology of Post-Genocide Social Anthropology Socialantropologi History Historia
83	Identifying Resilience Against Social Engineering Attacks Cerovic, Lazar January 2020 (has links) Social engineering (SE) attacks are one of the most common cyber attacks and frauds, which causes a large economical destruction to individuals, companies and governments alike. The attacks are hard to protect from, since SE-attacks is based on exploiting human weaknesses. The goal of this study is to identify indicators of resilience against SE-attacks from individual computer space data, such as network settings, social media profiles, web browsing behaviour and more. This study is based on qualitative methods to collect information, analyse and evaluate data. Resilience is evaluated with models such as theory of planned behaviour and the big five personality traits, as well as personal and demographic information. Indicators of resilience were found in network settings such as service set identifiers (SSID) and routers, web history, social media use and more. The framework developed in this study could be expanded with more aspect of individual data and different evaluation criteria. Further studies can be done about this subject with tools such as artificial intelligence and machine learning. / Sociala manipulationer är bland de vanligaste cyber attackerna och bedrägerierna som orsakar enorma ekonomiska skador varje år för individer, företag och myndigheter. Dessa attacker är svåra att skydda ifrån då sociala manipulationer utnyttjar mänskliga svagheter som ett medel till att stjäla pengar eller information. Målet med studien är att identifiera indikatorer av motstånd mot sociala manipulationsattacker, vilket ska göras med hjälp av individuell data, som kan bestå av nätverksinställningar, sociala medieprofiler, webbaktivitet bland annat. Denna studie är baserat på kvalitativa metoder för att samla, analysera och utvärdera data. Motstånd mot social manipulation utvärderas med hjälp av relevanta teorier och modeller som har med beteende och personligheter att göra, sedan används även personlig och demografisk information i utvärderingen. De indikatorer som identifierades var bland annat inställningar i routrar, webbhistorik och social medianvändning. Det teoretiska ramverket som utvecklades för att utvärdera motstånd mot sociala manipulationsattacker kan utökas med fler aspekter av individuell data. Viktiga samhällshändelser och sammanhang kan vara en intressant faktor som är relaterat till ämnet. Framtida studier skulle kunna kombinera detta ramverk med tekniker som maskinlärning och artificiell intelligens. Social engineering attacks Phishing Human Resilience Digital Footprint Social manipulation Nätfiske Digitalt fotavtryck individuell data Computer and Information Sciences Data- och informationsvetenskap
84	Shaping information security behaviors related to social engineering attacks Rocha Flores, Waldo January 2016 (has links) Today, few companies would manage to continuously stay competitive without the proper utilization of information technology (IT). This has increased companies’ dependency of IT and created new threats that need to be addressed to mitigate risks to daily business operations. A large extent of these IT-related threats includes hackers attempting to gain unauthorized access to internal computer networks by exploiting vulnerabilities in the behaviors of employees. A common way to exploit human vulnerabilities is to deceive and manipulate employees through the use of social engineering. Although researchers have attempted to understand social engineering, there is a lack of empirical research capturing multilevel factors explaining what drives employees’ existing behaviors and how these behaviors can be improved. This is addressed in this thesis. The contribution of this thesis includes (i) an instrument to measure security behaviors and its multilevel determinants, (ii) identification of multilevel variables that significantly influence employees’ intent for behavior change, (iii) identification of what behavioral governance factors that lay the foundation for behavior change, (iv) identification that national culture has a significant effect on how organizations cope with behavioral information security threats, and (v) a strategy to ensure adequate information security behaviors throughout an organization. This thesis is a composite thesis of eight papers. Paper 1 describes the instrument measuring multilevel determinants. Paper 2 and 3 describes how security knowledge is established in organizations, and the effect on employee information security awareness. In Paper 4 the root cause of employees’ intention to change their behaviors and resist social engineering is described. Paper 5 and 8 describes how the instrument to measure social engineering security behaviors was developed and validated through scenario-based surveys and phishing experiments. Paper 6 and 7 describes experiments performed to understand reason to why employees fall for social engineering. Finally, paper 2, 5 and 6 examines the moderating effect of national culture. / <p>QC 20160503</p> Information security Behavioral information security Social engineering Phishing Measuring information security behaviors Information security governance Experiments National culture Mixed method research design Quantitative methods
85	Constructing Invisible Hands : Market Technocrats in Sweden 1880–2000 Söderberg, Gabriel January 2013 (has links) Dominant market theories analyze markets as ahistorical entities without the need for professional groups that manage crucial functions within them. This thesis, in contrast, approaches markets as historical systems that develop over time and that can be constituted in many different ways because of different historical trajectories. Different professional groups managing market routines, further, are seen as a crucial part of markets. Two concepts are introduced: “market architecture”, the specific way a market is constituted at a given time; and “market technocrats”, the seemingly disinterested third party functionaries that manage routines in markets and advocate changes in market architecture. The thesis argues that market technocrats exist because of uncertainty and lack of trust between market actors, and that they are an important part of how market architectures develop over time. It presents an analytical framework for understanding market technocrats and how they interact with and develop markets. Four different aspects of market technocrats are explored: the process of establishing market technocrats in market routines; the capture of the authority of market technocrats by other market actors; the expansionistic behavior of market technocrats; and the way changes in economic theory, as an important part of how economists with technocratic authority advocate market change, can help to explain changes in markets. These aspects are explored through four empirical papers: The Market Technocracy of Import Substitution: The Role of Asymmetric Information and The Swedish Seed Association 1880–1935; Limits of Market Technocracy: Swedish Fertilizer Research and the Crisis of Objectivity 1945–1960; Central Banks, and the Pursuit of Influence, Prestige, and Legitimacy: The Creation of the Nobel Memorial Prize; and From Market Engineering to Institutional Engineering: Reform Economics in Sweden 1950–2000. The results of the papers form the basis of a hypothetical narrative of how the role of market technocrats has changed during the 20th century. This provides a roadmap for further research in the development of markets and the role of market technocrats. Markets technocrats central banks agricultural science Nobel prize economics and society asymmetric information Social Democracy neoliberalism social engineering market history market engineering market design performativity
86	Trygghet som handelsvara : Privat folkförsäkring i det framväxande välfärdssamhället 1900–1950 / The Business of Welfare : Industrial Life Insurance and the Emerging Swedish Welfare State 1900–1950 Sjöblom, Alf January 2016 (has links) Industrial Life Insurance (ILI) was introduced in Sweden in the beginning of the 1900s. Following models already used in the United Kingdom and the United States, this insurance was specifically aimed at manual labourers, promising pension savings and compensation to surviving relatives. The insurance was an immediate success, with almost three million insurance policies in force by the mid-1900s. ILI was characterised by extensive and carefully monitored marketing practices. By managing an army of agents, the companies sold policies and collected premiums on a regular basis in the homes of the insured. The purpose of the dissertation is to analyse the development of a commercial business with social policy aspirations, and how it interacted with other social security institutions. How could ILI thrive in the emerging Swedish welfare state that, according to existing research, allowed little space for market-based welfare alternatives? The dissertation also seeks to contribute to a broader understanding of the contemporary “welfare market” in Sweden today. From a perspective of welfare formation as a social process, the emergence and expansion of ILI is interpreted as a phenomenon that has shaped, and been shaped by, the social policy arena. The insurance industry’s capacity to adapt to the changing ambitions of the state in this arena is emphasised. Furthermore, its leading representatives’ ability to continuously locate the role of life insurance in the shifting landscape of social policy is underlined. By locating welfare in separate but complementary public and private spheres, the industry contributed to the shaping of the compulsory pension scheme introduced in 1913 and the overall regulation of insurance in the mid-twentieth century. The social security of Swedish citizens was now to be ensured according to the vision of complementary spheres that the insurance industry had advocated for almost fifty years. The insurance companies’ commercial activities are analysed as a form of governmentality, where the agency system is scrutinized as an interventionist practice that created a long lasting relationship between the companies and the working classes. The dissertation shows how the industrialists’ role as “insurance experts” was used to influence public policies. As public figures and experts on various committees, representatives of the industry advocated a welfare formation that left ample space for their own business interests. The scientisation of security was also essential in creating a product where social aspirations and commercial logics could be united. The success of ILI thus rested on the interaction with the state apparatus. An arena of social policy was established where commercial companies were to be the supplier of all welfare above the level of “meagre basic security”. Through intense marketing measures, commercial actors influenced the perceptions of security and welfare. The process of welfare formation led to the internalisation of commercial ideals about social security that now constitutes an essential dimension of the Swedish welfare state. Industrial Life Insurance Industrial Assurance Insurance Welfare Welfare State Social Policy Marketing Governmentality Social Engineering Actuarial Sweden 20th Century Trust Agency System
87	O direito como experiência: a construção da individualidade do homem frente à sociedade, ao Estado e às instituições Cavazzola Junior, Cesar Augusto 16 June 2015 (has links) Submitted by Silvana Teresinha Dornelles Studzinski (sstudzinski) on 2015-10-21T10:45:17Z No. of bitstreams: 2 CESAR AUGUSTO CAVAZZOLA JUNIOR_.pdf: 1114270 bytes, checksum: b85f6badf369bfca7258a412d3285338 (MD5) CESAR AUGUSTO CAVAZZOLA JUNIOR_.pdf: 1114270 bytes, checksum: b85f6badf369bfca7258a412d3285338 (MD5) / Made available in DSpace on 2015-10-21T10:45:17Z (GMT). No. of bitstreams: 2 CESAR AUGUSTO CAVAZZOLA JUNIOR_.pdf: 1114270 bytes, checksum: b85f6badf369bfca7258a412d3285338 (MD5) CESAR AUGUSTO CAVAZZOLA JUNIOR_.pdf: 1114270 bytes, checksum: b85f6badf369bfca7258a412d3285338 (MD5) Previous issue date: 2015-06-16 / Nenhuma / A finalidade deste trabalho é realizar uma análise acerca da construção da individualidade do homem. Isso pelo fato de que há cada vez mais um discurso em torno da sociedade, em direitos coletivos, em fraternidade e solidariedade, mas pouco de como o homem pode se valer de seus direitos individuais perante a coletividade. Nesse diálogo, haverá referências sobre o legado da modernidade e ao atual debate da pós-modernidade, sem contar com o fenômeno da multiplicação das leis e seus efeitos sociais e o fortalecimento do Estado. / The purpose of this study is to perform an analysis of the human individuality. This by the fact that more and more a speech around the society, collective rights, in fraternity and solidarity, but little of how man can makes use of their individual rights under the collective. In this dialogue, there will be references to the legacy of modernity and the current debate of postmodernity in addition to the multiplication phenomenon of laws and its social effects and the strengthening of the state. Modernidade Pós-modernidade Direito Estado Sociedade Leis Conhecimento Engenharia Social Ética Modernity Post-modernity Right State Society Laws Knowledge Social Engineering Ethics
88	From Machine House To Smart Home: The Relationship Between Technology And Private Sphere Throughout The 20th Century Gunlu, Esra 01 December 2007 (has links) (PDF) This study is an attempt for providing a socio-historical perspective to the smart home concept that is a proposal for the future domestic sphere by the application of intelligent technologies. For achieving this attempt, the smart home is investigated with its roots within the social history of domestic technology, by posing the question of a relation between the machine house idea of modern architecture and the smart home concept as the main question of the research. After an inquiry on the smart home concept and on the future private sphere that is envisaged within it, the emergence of modern private sphere, the transformation of private sphere under the impacts of industrialization, the appearance and the social consequences of the machine house idea, the introduction of mass produced appliances to the home and the impacts of it on private sphere, the development of communication and information technologies and their domestication processes are investigated. The coconstructive relationship of technology with the private sphere is pursued throughout this investigation. The research questions of the study are answered in the light of the gained knowledge and critical perspective throughout the investigations. At the end, it is revealed that the smart home has conceptual, technical, and ideological constructive roots within the histories of the modern private sphere, modern architecture and design, and domestic communication and information technologies. It is discussed that these roots constitute the smart home as a domain of social reproduction, which also provides the ground for its conceptualization and promotion as the future domestic sphere. T Technological Change 173.2-174.5
89	La médiation environnementale en aménagement du territoire dans la société civile au Japon : pour une philosophie politique du paysage / Environmental mediation in spatial planning within the civil society in Japan : toward a political philosophy of landscape Mannisi, Alban 24 February 2017 (has links) Depuis les années 70, des conventions internationales renforcent l’implication des sociétés civiles dans l’aménagement de leur territoire. Au Japon, ce phénomène s’est accéléré suite au tremblement de terre de Kōbe en 1995. Il a débouché en 1998 sur la loi NPO (association à but non lucratif) qui a consolidé le rôle de la société civile dans le jeu des acteurs du territoire. Cette thèse analyse les mécanismes d’engagement de la société civile et le recours à des médiateurs qui s’appuient sur les relations spécifiques de la société nippone à son environnement (milieu japonais), et enquête sur l’apparition de nouvelles formes de gouvernances des territoires. Afin de répondre à cette problématique, il est étudié dans un premier temps l‘émergence du rôle de la société civile, grâce à la médiation dans l’aménagement du territoire au Japon, en montrant comment ces phénomènes s’ancrent pour partie sur certaines logiques traditionnelles, mais également sur des évolutions internationales. Puis, dans un deuxième temps, à partir de l’étude de trois pratiques de médiateurs d’ingénierie sociale : KUWAKO Toshio (philosophe), YAMAZAKI Ryō (paysagiste) et KOIZUMI Hideki (urbaniste), il est observé comment les techniques de médiations inspirées pour partie de techniques étrangères sont assimilées et réajustées pour répondre aux besoins de la société nippone. Cette thèse précise ainsi la porosité entre l’autochtonie et les transferts de méthodes de gouvernance internationale ; elle met en évidence comment les volontés internationales d’implication des sociétés civiles s’inscrivent dans les logiques du milieu japonais. En conclusion, une tentative de mise en perspective des données de la thèse est recherchée à partir de l’énoncé d’une philosophie politique du paysage. / Since the 1970s, international conventions have reinforced the involvement of civil societies in the development of their territories. In Japan, this phenomenon was accelerated further to the Kōbe earthquake in 1995. In 1998, it led to the NPO (Non Profitable Organization), which consolidated the role of civil society in the stakeholders' territory. This thesis analyzes the mechanisms of civil society engagement and the use of mediators who rely on the specific relation between Japanese society and its environment (Japanese milieu), and investigates the emergence of new forms of territorial governance. In order to answer this problematic, we first study the emergence of the role of civil society through mediation in territorial planning in Japan, showing how these phenomena are partly based on certain logics, but also on international developments. Then, from the study of three practices of mediators of social engineering: KUWAKO Toshio (Philosopher), YAMAZAKI Ryō (Landscape Architect) and KOIZUMI Hideki (Urban Planner), it is observed how the techniques of mediations inspired part of foreign techniques are assimilated and readjusted to meet the needs of Japanese society. This thesis explains the porosity between autochthony and the transfer of methods of international governance. It highlights how the international will to involve civil societies is part of the logic of the Japanese milieu. In conclusion, an attempt to put into perspective the data of the thesis is sought from the statement of a political philosophy of landscape. Aménagement du territoire Écologie sociale Ingénierie sociale Japon Médiation environnementale Société civile Civil society Environmental mediation Japan Social ecology Social engineering Territorial planning
90	Bezpečnost a ochrana dat a informací v bankovnictví pro manažery / Security and Protection of Data and Information in Banking Business for Managers Melichar, Jan January 2009 (has links) This dissertation describes information as an economic object and focuses on information security with reference to all technical and social aspects and documents the necessity to consider both those areas simultaneously. The dissertation determines information security standards and describes some tools being used for effective data protection and information systems protection. One part of this dissertation is a model design for effective controlling of data and process protection, which can be used by bank managers on process control design especially in transaction processing area. This model is divided into several logical and consequential blocks and provides help to operating managers to design or redesign new or existing processes accordingly. The dissertation clearly highlights related insufficiencies especially those related to data access protection and passwords and one related survey has been performed to prove that

Search results