安全知识模态改善网络钓鱼敏感性认知机理研究  

作　　者：王志英[1] 李桂云 王念新[1] 葛世伦[1] WANG Zhiying;LI Guiyun;WANG Nianxin;GE Shilun(School of Economics and Management,Jiangsu University of Science and Technology,Zhenjiang 212100,China)

机构地区：[1]江苏科技大学经济管理学院,江苏镇江212100

出　　处：《管理工程学报》2024年第6期246-260,共15页Journal of Industrial Engineering and Engineering Management

基　　金：国家自然科学基金项目(72074101);江苏省社会科学基金项目(20TQB003);江苏省研究生科研与实践创新计划项目(KYCX21_3426)。

摘　　要：网络钓鱼敏感性的缺乏导致人因成为网络钓鱼中最薄弱的环节。网络安全管理部门给网民灌输安全知识对提高其敏感性以主动防御网络钓鱼具有重要意义。本文基于双重编码理论,借助功能性近红外光谱技术,采用2(前测、后测)×2(言语知识、视觉知识)×2(难识别、易识别)的混合实验设计,探究两种安全知识模态改善网络钓鱼敏感性认知机理的差异。研究结果表明,两种模态安全知识干预均显著提高网络钓鱼敏感性,相比言语知识,视觉知识对网络钓鱼敏感性的影响更积极;两种模态安全知识干预对执行功能的增强效果存在差异,执行功能增强越高时网络钓鱼敏感性效果提升越好;执行功能在安全知识模态改善网络钓鱼敏感性过程中起中介作用;网络钓鱼识别难度存在调节作用,识别高难度的网络钓鱼时,视觉知识干预效果更显著。研究结论揭示了安全知识模态改善网络钓鱼敏感性的认知神经机理,对从模态着手进行安全知识灌输以提高网民的网络钓鱼敏感性具有一定的实践指导作用。Phishing occurs frequently in real life and causes serious economic losses and negative consequences for individuals,organizations,and society.As a type of social engineering,phishing mainly exploits the psychological weaknesses of an individual rather than the technical vulnerabilities of a system to launch attacks;therefore,people are the weakest and most important link in a phishing attack chain.Improving the ability of Internet users to actively defend themselves against phishing is extremely essential for avoiding phishing-related risks.Previous studies have confirmed that increasing security knowledge has a positive effect on improving the sensitivity of Internet users to phishing.However,diverse information carriers are gradually emerging,and different modalities,such as text and pictures,can affect the receiver′s understanding of security knowledge differently.However,existing studies on the effects of different knowledge modalities on behavioral interventions have been inconclusive.Therefore,the impact of different security knowledge modalities on phishing sensitivity and their mechanisms require further study.Starting from proactive phishing sensitivity,this study explores the effect and mechanism of security knowledge modalities on phishing sensitivity based on the dual coding theory.This study presents a research model describing the impact of verbal knowledge in the form of the text modality and visual knowledge as the image modality on phishing sensitivity.Additionally,it considers the moderating role of phishing context while evaluating the influence of security knowledge modalities on phishing sensitivity,and proposes the 2(time:pre-intervention,post-intervention)×2(security knowledge modalities:verbal knowledge,visual knowledge)×2(difficulty of phishing identification:difficult to identify,easy to identify)design for cognitive neural experiments on phishing identification tasks.The E-prime software and Brite24 functional near-infrared imaging equipment were used to collect behavioral and cogn

关 键 词：网络钓鱼敏感性 安全知识模态 功能性近红外光谱技术 双重编码理论 

分 类 号：C931.6[经济管理—管理学]