[转载]Detecting Deception in the Context of Web 2.0

文章作者：Annarita Giani and Paul Thompson
原始出处：http://seclab.cs.rice.edu/w2sp/2007/

本文章是Web 2.0 Security & Privacy 2007大会议题。

Cybenko et al. introduced the concept of cognitive hacking and described several countermeasures for defending against cognitive hacking. Cognitive hacking was defined as a disinformation attack on the mind of the end user of a networked computer system, e.g., a computer connected to the Internet. Cognitive hacking is a type of semantic attack as defined by Libicki, who described computer network attacks as being physical, syntactic, and semantic.
Cybenko et al. narrowed Libicki’s focus to semantic attacks targeting the mind of a human user, called cognitive attacks. More recently Giani has extended the notion of cognitive hacking to describe cognitive channel attacks. Thompson in subsequent research has emphasized semantic attacks and deception. In this paper we use the terminology of semantic attacks and cognitive channel attacks to broaden the scope of Cybenko et al.’s earlier work on detecting pump-and-dump schemes to consider cognitive channel and semantic attacks, and their detection, in the context of Web 2.0 environments.