Researchers and practitioners have acknowledged that human-related risks are among the most important factors in cybersecurity, e.g. an IBM report (2014) shows that over 95% of security incidents involved “human errors”. The ACCEPT (Addressing Cybersecurity and Cybercrime via a co-Evolutionary aPproach to reducing human-relaTed risks) project aims to develop a framework to analyse the behavioural co-evolution of cybersecurity and cybercrime ecosystems, and effectively influence behaviours of a range of actors in ecosystems in order to reduce human-related risks.
Led by the University of Surrey, the ACCEPT project involves a group of researchers working in five academic disciplines (Computer Science, Crime Science, Business, Engineering, Behavioural Science) at four UK research institutes University of Surrey, University College London, University of Warwick, TRL. They will be supported by an Advisory Board with 12 international/UK researchers and a Stakeholder Group formed by 12 non-academic partners (including LEAs, NGOs and industry).
- To develop a more comprehensive understanding of the key (co)evolutionary trajectories of human behaviours in cybersecurity and cybercrime ecosystems.
- To compile a knowledge base including evidential and theoretical information to assist solution designers and crime preventers to out-innovate adaptive cybersecurity offenders.
- To develop a cybercrime ontology with an internally-consistent glossary that can make the cybercrime knowledge base machine readable for automated processing.
- To produce a practical framework for reducing human-related cyber risks, which incorporates theoretical concepts and needed software tools for better user engagement via personalisation and contextualisation.
- To validate the developed framework in selected real-world use cases.
Further details on the project’s University of Surrey webpage.