A vulnerability evaluation framework for online social network profiles: axioms and propositions

摘要

Online social network (OSN) usage has led to personal details being presented on online profiles readily. This can cause profile owners to be vulnerable to social engineering attacks. Our approach to quantifying vulnerability consists of a model with three components: individual, relative and absolute vulnerabilities. The individual vulnerability is calculated by allocating weights to profile attribute values disclosed which may contribute towards the personal vulnerability of the profile owner. The relative vulnerability is the collective vulnerability of the profiles' friends. The absolute vulnerability is the overall vulnerability for the profile which considers the individual and relative vulnerabilities. This paper extends research done on axioms based on the vulnerability model, by stating propositions to explore the effects of different operators on the profiles relative and absolute vulnerabilities. The case studies show that our approach offers a formal background for estimating how attributes and operator changes influence the individual, relative and absolute vulnerability of OSN profiles.