Date of Award

5-2022

Degree Type

Thesis

Degree Name

M.S.

Degree Program

Computer Science

Department

Computer Science

Major Professor

Samuel, Ben

Second Advisor

Vadrevu, Phani

Third Advisor

Arifuzzaman, Shaikh

Abstract

Phishing attacks are challenging to detect and can have severe consequences. For example, in 2020 alone, phishing attacks cost organizations more than $1.8 billion. Numerous phishing training programs such as reading materials, training videos, and games aim to mitigate the incurred losses. However, regardless of the medium, nearly all existing training places the learner in the role of the victim.

We hypothesize placing the players as an attacker tasked with strategically creating emails will naturally lead to players better recognizing phishing emails. Based on this hypothesis, we have developed an interactive game that trains the users against phishing attacks as an attacker. Our players actively craft simulated emails that employ various phishing techniques rather than passively receiving emails and being asked to classify them. We conducted user testing with 11 participants, and our results showed that participants recognized and understood phishing emails better after playing the game.

Rights

The University of New Orleans and its agents retain the non-exclusive license to archive and make accessible this dissertation or thesis in whole or in part in all forms of media, now or hereafter known. The author retains all other ownership rights to the copyright of the thesis or dissertation.

Available for download on Saturday, May 27, 2023

Share

COinS