Human Factors

Publications

Peer-Reviewed

Are You Sure You Want To Do Coordinated Vulnerability Disclosure?

Ting-Han Chen, Carlotta Tagliaro, Martina Lindorfer, Kevin Borgolte, Jeroen van der Ham-de Vos

Proceedings of the 9th International Workshop on Traffic Measurements for Cybersecurity (WTMC), July 2024

@inproceedings{wtmc2024are-you-sure-you-want-to-do-cvd,
  title     = {{Are You Sure You Want To Do Coordinated Vulnerability Disclosure?}},
  author    = {Chen, Ting-Han and Tagliaro, Carlotta and Lindorfer, Martina and Borgolte, Kevin and van der Ham-de Vos, Jeroen},
  booktitle = {Proceedings of the 9th International Workshop on Traffic Measurements for Cybersecurity (WTMC)},
  date      = {2024-07-08},
  doi       = {10.1109/EuroSPW61312.2024.00039},
  edition   = {9},
  location  = {Vienna, Austria},
  publisher = {Institute of Electrical and Electronics Engineers (IEEE)},
  url       = {https://doi.org/10.1109/EuroSPW61312.2024.00039}
}

Those Who Know Don't, Those Who Don't Know Deploy: Understanding Security Awareness in the Adoption of Industrial IoT

Verena Schrama, Carlos H. Gañán, Doris Aschenbrenner, Mark de Reuver, Kevin Borgolte, Tobias Fiebig

Proceedings of the 20th Workshop on the Economics of Information Security (WEIS), December 2020

@inproceedings{weis2020-those-who-know-dont,
  title     = {{Those Who Know Don't, Those Who Don't Know Deploy: Understanding Security Awareness in the Adoption of Industrial IoT}},
  author    = {Schrama, Verena and Gañán, Carlos H. and Aschenbrenner, Doris and de Reuver, Mark and Borgolte, Kevin and Fiebig, Tobias},
  booktitle = {Proceedings of the 20th Workshop on the Economics of Information Security (WEIS)},
  date      = {2020-12},
  editor    = {Christin, Nicolas},
  location  = {Brussels, Belgium},
  url       = {https://weis2020.econinfosec.org/wp-content/uploads/sites/8/2020/06/weis20-final23.pdf}
}

Investigating Operators' Perspective on Security Misconfigurations

Constanze Dietrich, Katharina Krombholz, Kevin Borgolte, Tobias Fiebig

Proceedings of the 25th ACM SIGSAC Conference on Computer and Communications Security (CCS), October 2018

@inproceedings{ccs2018-security-misconfigurations,
  title     = {{Investigating Operators' Perspective on Security Misconfigurations}},
  author    = {Dietrich, Constanze and Krombholz, Katharina and Borgolte, Kevin and Fiebig, Tobias},
  booktitle = {Proceedings of the 25th ACM SIGSAC Conference on Computer and Communications Security (CCS)},
  date      = {2018-10},
  doi       = {10.1145/3243734.3243794},
  edition   = {25},
  editor    = {Backes, Michael and Wang, XiaoFeng},
  isbn      = {978-1-4503-5693-0},
  location  = {Toronto, ON, Canada},
  publisher = {Association for Computing Machinery (ACM)},
  url       = {https://doi.org/10.1145/3243734.3243794}
}

Drops for Stuff: An Analysis of Reshipping Mule Scams

Shuang Hao, Kevin Borgolte, Nick Nikiforakis, Gianluca Stringhini, Manuel Egele, Michael Eubanks, Brian Krebs, Giovanni Vigna

Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (CCS), October 2015

@inproceedings{ccs2015-drops-for-stuff,
  title     = {{Drops for Stuff: An Analysis of Reshipping Mule Scams}},
  author    = {Hao, Shuang and Borgolte, Kevin and Nikiforakis, Nick and Stringhini, Gianluca and Egele, Manuel and Eubanks, Michael and Krebs, Brian and Vigna, Giovanni},
  booktitle = {Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (CCS)},
  acmid     = {2813620},
  date      = {2015-10},
  doi       = {10.1145/2810103.2813620},
  edition   = {22},
  editor    = {Li, Ninghui and Kruegel, Christopher},
  isbn      = {978-1-4503-3832-5},
  location  = {Denver, CO, USA},
  numpages  = {12},
  pages     = {1081--1092},
  publisher = {Association for Computing Machinery (ACM)},
  url       = {https://doi.org/10.1145/2810103.2813620}
}

What You Submit is Who You Are: A Multi-Modal Approach for Deanonymizing Scientific Publications

Mathias Payer, Ling Huang, Neil Zhenqiang Gong, Kevin Borgolte, Mario Frank

IEEE Transactions on Information Forensics and Security (TIFS) (Volume 10, Issue 1), January 2015

@article{tifs2015-what-you-submit-is-who-you-are,
  title     = {{What You Submit is Who You Are: A Multi-Modal Approach for Deanonymizing Scientific Publications}},
  author    = {Payer, Mathias and Huang, Ling and Gong, Neil Zhenqiang and Borgolte, Kevin and Frank, Mario},
  date      = {2015-01},
  doi       = {10.1109/TIFS.2014.2368355},
  issn      = {1556-6013},
  journal   = {IEEE Transactions on Information Forensics and Security (TIFS)},
  number    = {1},
  pages     = {200--212},
  publisher = {Institute of Electrical and Electronics Engineers (IEEE)},
  url       = {https://doi.org/10.1109/TIFS.2014.2368355},
  volume    = {10}
}

Preprints

Human Factors in Security Research: Lessons Learned from 2008-2018

Mannat Kaur, Michel van Eeten, Marijn Janssen, Kevin Borgolte, Tobias Fiebig

March 2021

@unpublished{arxiv-2103.13287,
  title       = {{Human Factors in Security Research: Lessons Learned from 2008-2018}},
  author      = {Kaur, Mannat and van Eeten, Michel and Janssen, Marijn and Borgolte, Kevin and Fiebig, Tobias},
  date        = {2021-03-24},
  eprint      = {2103.13287},
  eprintclass = {cs.CY},
  eprinttype  = {arxiv},
  url         = {https://arxiv.org/abs/2103.13287}
}