Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors

Inés Hernández San Román; Marco Antonio Sotelo Monge; Víctor A. Villagra

doi:10.1007/978-3-031-25460-4_28

Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors

Inés Hernández San Román
, Marco Antonio Sotelo Monge
, Víctor A. Villagra

Research output: Chapter in Book/Report/Conference proceeding › Paper (Conference contribution) › peer-review

Abstract

This document’s purpose is to study the impact of the cognitive domain in cybersecurity as a field, including its implications in cyberdefense and cyberspace, a domain that has gained traction in the last years due to the growing use of new technologies in everyday life. In addition, the investigation will focus on humans’ cognitive biases, how they influence decision making and how an hypothetical malicious individual could use these intrinsic vulnerabilities of the human mind in their favor to push misinformation campaigns, elaborate social engineering attacks or manipulate other people. Finally, a Cyber Kill Chain will be elaborated with the aim to illustrate the steps that the aforementioned attacker could take in order to achieve their goals successfully. The designed methodology will also be tested in a real-life scenario and will be validated by experts in the fields of cybersecurity and psychology.

Translated title of the contribution	Diseño y Validación de un Modelo de Amenazas Basado en Cyber Kill Chain Aplicado a Factores Humanos
Original language	English
Title of host publication	Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers
Editors	Sokratis Katsikas, Frédéric Cuppens, Christos Kalloniatis, John Mylopoulos, Frank Pallas, Jörg Pohle, M. Angela Sasse, Habtamu Abie, Silvio Ranise, Luca Verderame, Enrico Cambiaso, Jorge Maestre Vidal, Marco Antonio Sotelo Monge, Massimiliano Albanese, Basel Katt, Sandeep Pirbhulal, Ankur Shukla
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	482-499
Number of pages	18
ISBN (Print)	9783031254598
DOIs	https://doi.org/10.1007/978-3-031-25460-4_28
State	Published - 18 Feb 2023
Externally published	Yes
Event	International Workshops which were held in conjunction with 27th European Symposium on Research in Computer Security, ESORICS 2022 - Copenhagen, Denmark Duration: 26 Sep 2022 → 30 Sep 2022

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13785 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	International Workshops which were held in conjunction with 27th European Symposium on Research in Computer Security, ESORICS 2022
Country/Territory	Denmark
City	Copenhagen
Period	26/09/22 → 30/09/22

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 9 Industry, Innovation, and Infrastructure

Keywords

Cognitive biases
Cognitive domain
Cyber Kill Chain
Cybersecurity
Cyberspace
Misinformation
Social engineering

Access to Document

10.1007/978-3-031-25460-4_28

Cite this

Hernández San Román, I., Sotelo Monge, M. A., & Villagra, V. A. (2023). Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors. In S. Katsikas, F. Cuppens, C. Kalloniatis, J. Mylopoulos, F. Pallas, J. Pohle, M. A. Sasse, H. Abie, S. Ranise, L. Verderame, E. Cambiaso, J. Maestre Vidal, M. A. Sotelo Monge, M. Albanese, B. Katt, S. Pirbhulal, & A. Shukla (Eds.), Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers (pp. 482-499). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13785 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-25460-4_28

Hernández San Román, Inés ; Sotelo Monge, Marco Antonio ; Villagra, Víctor A. / Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors. Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers. editor / Sokratis Katsikas ; Frédéric Cuppens ; Christos Kalloniatis ; John Mylopoulos ; Frank Pallas ; Jörg Pohle ; M. Angela Sasse ; Habtamu Abie ; Silvio Ranise ; Luca Verderame ; Enrico Cambiaso ; Jorge Maestre Vidal ; Marco Antonio Sotelo Monge ; Massimiliano Albanese ; Basel Katt ; Sandeep Pirbhulal ; Ankur Shukla. Springer Science and Business Media Deutschland GmbH, 2023. pp. 482-499 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{65e052b71f354888be3b13796678d06b,

title = "Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors",

abstract = "El prop{\'o}sito de este documento es estudiar el impacto del dominio cognitivo en la ciberseguridad como campo, incluidas sus implicaciones en la ciberdefensa y el ciberespacio, un dominio que ha cobrado fuerza en los {\'u}ltimos a{\~n}os debido al creciente uso de las nuevas tecnolog{\'i}as en la vida cotidiana. Adem{\'a}s, la investigaci{\'o}n se centrar{\'a} en los sesgos cognitivos de los humanos, c{\'o}mo influyen en la toma de decisiones y c{\'o}mo un hipot{\'e}tico individuo malicioso podr{\'i}a usar estas vulnerabilidades intr{\'i}nsecas de la mente humana a su favor para impulsar campa{\~n}as de desinformaci{\'o}n, elaborar ataques de ingenier{\'i}a social o manipular a otras personas. Finalmente, se elaborar{\'a} una Cyber Kill Chain con el objetivo de ilustrar los pasos que podr{\'i}a dar el mencionado atacante para lograr sus objetivos con {\'e}xito. La metodolog{\'i}a dise{\~n}ada tambi{\'e}n se probar{\'a} en un escenario de la vida real y ser{\'a} validada por expertos en los campos de la ciberseguridad y la psicolog{\'i}a.",

keywords = "Cognitive biases, Cognitive domain, Cyber Kill Chain, Cybersecurity, Cyberspace, Misinformation, Social engineering",

author = "\{Hern{\'a}ndez San Rom{\'a}n\}, In{\'e}s and \{Sotelo Monge\}, \{Marco Antonio\} and Villagra, \{V{\'i}ctor A.\}",

note = "Funding Information: This research has received funding from the European Defence Industrial Development Programme (EDIDP) under the grant agreement Number EDIDP-CSAMN-SSC-2019-022-ECYSAP (European Cyber Situational Awareness Platform). Publisher Copyright: {\textcopyright} 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.; International Workshops which were held in conjunction with 27th European Symposium on Research in Computer Security, ESORICS 2022 ; Conference date: 26-09-2022 Through 30-09-2022",

year = "2023",

month = feb,

day = "18",

doi = "10.1007/978-3-031-25460-4\_28",

language = "Ingl{\'e}s",

isbn = "9783031254598",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "482--499",

editor = "Sokratis Katsikas and Fr{\'e}d{\'e}ric Cuppens and Christos Kalloniatis and John Mylopoulos and Frank Pallas and J{\"o}rg Pohle and Sasse, \{M. Angela\} and Habtamu Abie and Silvio Ranise and Luca Verderame and Enrico Cambiaso and \{Maestre Vidal\}, Jorge and \{Sotelo Monge\}, \{Marco Antonio\} and Massimiliano Albanese and Basel Katt and Sandeep Pirbhulal and Ankur Shukla",

booktitle = "Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers",

}

Hernández San Román, I, Sotelo Monge, MA & Villagra, VA 2023, Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors. in S Katsikas, F Cuppens, C Kalloniatis, J Mylopoulos, F Pallas, J Pohle, MA Sasse, H Abie, S Ranise, L Verderame, E Cambiaso, J Maestre Vidal, MA Sotelo Monge, M Albanese, B Katt, S Pirbhulal & A Shukla (eds), Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 13785 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 482-499, International Workshops which were held in conjunction with 27th European Symposium on Research in Computer Security, ESORICS 2022, Copenhagen, Denmark, 26/09/22. https://doi.org/10.1007/978-3-031-25460-4_28

Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors. / Hernández San Román, Inés; Sotelo Monge, Marco Antonio; Villagra, Víctor A.
Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers. ed. / Sokratis Katsikas; Frédéric Cuppens; Christos Kalloniatis; John Mylopoulos; Frank Pallas; Jörg Pohle; M. Angela Sasse; Habtamu Abie; Silvio Ranise; Luca Verderame; Enrico Cambiaso; Jorge Maestre Vidal; Marco Antonio Sotelo Monge; Massimiliano Albanese; Basel Katt; Sandeep Pirbhulal; Ankur Shukla. Springer Science and Business Media Deutschland GmbH, 2023. p. 482-499 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13785 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Paper (Conference contribution) › peer-review

TY - GEN

T1 - Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors

AU - Hernández San Román, Inés

AU - Sotelo Monge, Marco Antonio

AU - Villagra, Víctor A.

N1 - Funding Information: This research has received funding from the European Defence Industrial Development Programme (EDIDP) under the grant agreement Number EDIDP-CSAMN-SSC-2019-022-ECYSAP (European Cyber Situational Awareness Platform). Publisher Copyright: © 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.

PY - 2023/2/18

Y1 - 2023/2/18

N2 - El propósito de este documento es estudiar el impacto del dominio cognitivo en la ciberseguridad como campo, incluidas sus implicaciones en la ciberdefensa y el ciberespacio, un dominio que ha cobrado fuerza en los últimos años debido al creciente uso de las nuevas tecnologías en la vida cotidiana. Además, la investigación se centrará en los sesgos cognitivos de los humanos, cómo influyen en la toma de decisiones y cómo un hipotético individuo malicioso podría usar estas vulnerabilidades intrínsecas de la mente humana a su favor para impulsar campañas de desinformación, elaborar ataques de ingeniería social o manipular a otras personas. Finalmente, se elaborará una Cyber Kill Chain con el objetivo de ilustrar los pasos que podría dar el mencionado atacante para lograr sus objetivos con éxito. La metodología diseñada también se probará en un escenario de la vida real y será validada por expertos en los campos de la ciberseguridad y la psicología.

AB - El propósito de este documento es estudiar el impacto del dominio cognitivo en la ciberseguridad como campo, incluidas sus implicaciones en la ciberdefensa y el ciberespacio, un dominio que ha cobrado fuerza en los últimos años debido al creciente uso de las nuevas tecnologías en la vida cotidiana. Además, la investigación se centrará en los sesgos cognitivos de los humanos, cómo influyen en la toma de decisiones y cómo un hipotético individuo malicioso podría usar estas vulnerabilidades intrínsecas de la mente humana a su favor para impulsar campañas de desinformación, elaborar ataques de ingeniería social o manipular a otras personas. Finalmente, se elaborará una Cyber Kill Chain con el objetivo de ilustrar los pasos que podría dar el mencionado atacante para lograr sus objetivos con éxito. La metodología diseñada también se probará en un escenario de la vida real y será validada por expertos en los campos de la ciberseguridad y la psicología.

KW - Cognitive biases

KW - Cognitive domain

KW - Cyber Kill Chain

KW - Cybersecurity

KW - Cyberspace

KW - Misinformation

KW - Social engineering

UR - https://www.scopus.com/pages/publications/85151052059

U2 - 10.1007/978-3-031-25460-4_28

DO - 10.1007/978-3-031-25460-4_28

M3 - Articulo (Contribución a conferencia)

AN - SCOPUS:85151052059

SN - 9783031254598

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 482

EP - 499

BT - Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers

A2 - Katsikas, Sokratis

A2 - Cuppens, Frédéric

A2 - Kalloniatis, Christos

A2 - Mylopoulos, John

A2 - Pallas, Frank

A2 - Pohle, Jörg

A2 - Sasse, M. Angela

A2 - Abie, Habtamu

A2 - Ranise, Silvio

A2 - Verderame, Luca

A2 - Cambiaso, Enrico

A2 - Maestre Vidal, Jorge

A2 - Sotelo Monge, Marco Antonio

A2 - Albanese, Massimiliano

A2 - Katt, Basel

A2 - Pirbhulal, Sandeep

A2 - Shukla, Ankur

PB - Springer Science and Business Media Deutschland GmbH

T2 - International Workshops which were held in conjunction with 27th European Symposium on Research in Computer Security, ESORICS 2022

Y2 - 26 September 2022 through 30 September 2022

ER -

Hernández San Román I, Sotelo Monge MA, Villagra VA. Design and Validation of a Threat Model Based on Cyber Kill Chain Applied to Human Factors. In Katsikas S, Cuppens F, Kalloniatis C, Mylopoulos J, Pallas F, Pohle J, Sasse MA, Abie H, Ranise S, Verderame L, Cambiaso E, Maestre Vidal J, Sotelo Monge MA, Albanese M, Katt B, Pirbhulal S, Shukla A, editors, Computer Security. ESORICS 2022 International Workshops - CyberICPS 2022, SECPRE 2022, SPOSE 2022, CPS4CIP 2022, CDT and SECOMANE 2022, EIS 2022, and SecAssure 2022, Revised Selected Papers. Springer Science and Business Media Deutschland GmbH. 2023. p. 482-499. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-25460-4_28