Paper Info
Title
Understanding the Relationship between Human Behavior and Susceptibility to Cyber Attacks: A Data-Driven Approach.
Abstract
Despite growing speculation about the role of human behavior in cyber-security of machines, concrete data-driven analysis and evidence have been lacking. Using Symantec’s WINE platform, we conduct a detailed study of 1.6 million machines over an 8-month period in order to learn the relationship between user behavior and cyber attacks against their personal computers. We classify users into 4 categories (gamers, professionals, software developers, and others, plus a fifth category comprising everyone) and identify a total of 7 features that act as proxies for human behavior. For each of the 35 possible combinations (5 categories times 7 features), we studied the relationship between each of these seven features and one dependent variable, namely the number of attempted malware attacks detected by Symantec on the machine. Our results show that there is a strong relationship between several features and the number of attempted malware attacks. Had these hosts not been protected by Symantec’s anti-virus product or a similar product, they would likely have been infected. Surprisingly, our results show that software developers are more at risk of engaging in risky cyber-behavior than other categories.
Year
DOI
Venue
2017
10.1145/2890509
ACM TIST
Keywords
Field
DocType
Malware,computer virus,user behavior
Speculation,Internet privacy,Data-driven,Computer security,Computer science,Computer virus,Software,Variables,Malware
Journal
Volume
Issue
ISSN
8
4
2157-6904
Citations 
PageRank 
References 
7
0.74
23
Authors
5
Name
Order
Citations
PageRank
Michael Ovelgönne1475.03
Tudor Dumitras254441.12
B. Aditya Prakash394153.95
V. S. Subrahmanian468641053.38
Benjamin Wang570.74