{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,17]],"date-time":"2026-03-17T00:37:42Z","timestamp":1773707862505,"version":"3.50.1"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030665036","type":"print"},{"value":"9783030665043","type":"electronic"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-66504-3_18","type":"book-chapter","created":{"date-parts":[[2020,12,23]],"date-time":"2020-12-23T06:03:47Z","timestamp":1608703427000},"page":"294-311","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Systematic Scenario Creation for Serious Security-Awareness Games"],"prefix":"10.1007","author":[{"given":"Vera","family":"Hazilov","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0893-7856","authenticated-orcid":false,"given":"Sebastian","family":"Pape","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,12,24]]},"reference":[{"issue":"3","key":"18_CR1","doi-asserted-by":"publisher","first-page":"237","DOI":"10.1080\/0144929X.2012.708787","volume":"33","author":"J Abawajy","year":"2014","unstructured":"Abawajy, J.: User preference of cyber security awareness delivery methods. Behav. Inf. Technol. 33(3), 237\u2013248 (2014)","journal-title":"Behav. Inf. Technol."},{"key":"18_CR2","unstructured":"Alexander, M.: Methods for understanding and reducing social engineering attacks. SANS Inst. 1, 1\u201332 (2016). https:\/\/www.sans.org\/reading-room\/whitepapers\/critical\/methods-understand-ing-reducing-social-engineering-attacks-36972"},{"key":"18_CR3","unstructured":"Bada, M., Sasse, A.M., Nurse, J.R.C.: Cyber security awareness campaigns: Why do they fail to change behaviour? CoRR abs\/1901.02672 (2019). http:\/\/arxiv.org\/abs\/1901.02672"},{"key":"18_CR4","doi-asserted-by":"crossref","unstructured":"Beckers, K., Pape, S.: A serious game for eliciting social engineering security requirements. In: Proceedings of the 24th IEEE International Conference on Requirements Engineering, RE 2016. IEEE Computer Society (2016)","DOI":"10.1109\/RE.2016.39"},{"key":"18_CR5","doi-asserted-by":"crossref","unstructured":"Beckers, K., Pape, S., Fries, V.: HATCH: Hack and trick capricious humans - a serious game on social engineering. In: Proceedings of the 2016 British HCI Conference, Bournemouth, United Kingdom, 11\u201315 July 2016 (2016)","DOI":"10.14236\/ewic\/HCI2016.94"},{"key":"18_CR6","volume-title":"Constructing Grounded Theory","author":"K Charmaz","year":"2014","unstructured":"Charmaz, K.: Constructing Grounded Theory. Sage, Thousand Oaks (2014)"},{"key":"18_CR7","doi-asserted-by":"crossref","unstructured":"Cooper, A.: The inmates are running the asylum. indianapolis, ia: Sams. Macmillan (1999)","DOI":"10.1007\/978-3-322-99786-9_1"},{"key":"18_CR8","volume-title":"Basics of Qualitative Research: Techniques and Procedures for Developing Grounded Theory","author":"J Corbin","year":"2014","unstructured":"Corbin, J., Strauss, A.: Basics of Qualitative Research: Techniques and Procedures for Developing Grounded Theory. Sage publications, Thousand Oaks (2014)"},{"key":"18_CR9","doi-asserted-by":"crossref","unstructured":"Dimkov, T., Van Cleeff, A., Pieters, W., Hartel, P.: Two methodologies for physical penetration testing using social engineering. In: Proceedings of the 26th Annual Computer Security Applications Conference, pp. 399\u2013408 (2010)","DOI":"10.1145\/1920261.1920319"},{"key":"18_CR10","unstructured":"Donovan, L., Lead, P.: The use of serious games in the corporate sector. A State of the Art Report. Learnovate Centre (2012)"},{"key":"18_CR11","doi-asserted-by":"crossref","unstructured":"Faily, S., Flechais, I.: Persona cases: a technique for grounding personas. In: Proceedings of the SIGCHI Conference on Human Factors in Computing Systems, pp. 2267\u20132270 (2011)","DOI":"10.1145\/1978942.1979274"},{"key":"18_CR12","volume-title":"An Introduction to Qualitative Research","author":"U Flick","year":"2014","unstructured":"Flick, U.: An Introduction to Qualitative Research. Sage, Thousand Oaks (2014)"},{"key":"18_CR13","doi-asserted-by":"crossref","unstructured":"Gl\u00e4ser, J., Laudel, G.: Experteninterviews und qualitative Inhaltsanalyse: als Instrumente rekonstruierender Untersuchungen. Springer, Heidelberg (2009)","DOI":"10.1007\/978-3-531-91538-8"},{"key":"18_CR14","doi-asserted-by":"crossref","unstructured":"Hill, C.G., et al.: Gender-inclusiveness personas vs. stereotyping: can we have it both ways? In: Proceedings of the 2017 Chi Conference on Human Factors in Computing Systems, pp. 6658\u20136671 (2017)","DOI":"10.1145\/3025453.3025609"},{"key":"18_CR15","unstructured":"Huang, J., Krivkovich, A., Starikova, I., Yee, L., Zanoschi, D.: Women in the workplace 2019. McKinsey & Company and LeanIn.Org (2019). https:\/\/www.mckinsey.com\/~\/media\/McKinsey\/Featured%20Insights\/Gender%20Equality\/Women%20in%20the%20Workplace%202019\/Women-in-the-workplace-2019.pdf"},{"key":"18_CR16","unstructured":"Kipker, D.K., Pape, S., Wojak, S., Beckers, K.: Juristische bewertung eines social-engineering-abwehr trainings. In: Rudel, S., Lechner, U. (eds.) State of the Art: IT-Sicherheit f\u00fcr Kritische Infrastrukturen, pp. 112\u2013115. Universit\u00e4t der Bundeswehr, Neubiberg (2018). https:\/\/www.itskritis.de\/_uploads\/user\/IT-Sicherheit%20Kritische%20Infrastrukturen%E2%80%93screen.pdf#page=112"},{"key":"18_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"116","DOI":"10.1007\/978-3-642-21599-5_9","volume-title":"Trust and Trustworthy Computing","author":"M Malheiros","year":"2011","unstructured":"Malheiros, M., Jennett, C., Seager, W., Sasse, M.A.: Trusting to learn: trust and privacy issues in serious games. In: McCune, J.M., Balacheff, B., Perrig, A., Sadeghi, A.-R., Sasse, A., Beres, Y. (eds.) Trust 2011. LNCS, vol. 6740, pp. 116\u2013130. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-21599-5_9"},{"key":"18_CR18","doi-asserted-by":"publisher","first-page":"17","DOI":"10.1057\/9780230244276_2","volume-title":"Interviewing Experts","author":"M Meuser","year":"2009","unstructured":"Meuser, M., Nagel, U.: The expert interview and changes in knowledge production. In: Bogner, A., Littig, B., Menz, W. (eds.) Interviewing Experts, pp. 17\u201342. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1057\/9780230244276_2"},{"key":"18_CR19","volume-title":"The Art of Deception: Controlling the Human Element of Security","author":"KD Mitnick","year":"2003","unstructured":"Mitnick, K.D., Simon, W.L.: The Art of Deception: Controlling the Human Element of Security. John Wiley & Sons, Hoboken (2003)"},{"key":"18_CR20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-8349-6790-9","volume-title":"Qualitative Marktforschung in Theorie und Praxis","author":"G Naderer","year":"2007","unstructured":"Naderer, G., Balzer, E., Batinic, B., Bauer, F., Blank, R., David, J.: Qualitative Marktforschung in Theorie und Praxis. Springer, Heidelberg (2007). https:\/\/doi.org\/10.1007\/978-3-8349-6790-9"},{"key":"18_CR21","unstructured":"Papadaki, M., Furnell, S., Dodge, R.: Social engineering: Exploiting the weakest links. European Network & Information Security Agency (ENISA), Heraklion, Crete (2008)"},{"issue":"5","key":"18_CR22","first-page":"13","volume":"15","author":"TR Peltier","year":"2006","unstructured":"Peltier, T.R.: Social engineering: concepts and solutions. Inf. Secur. J. 15(5), 13 (2006)","journal-title":"Inf. Secur. J."},{"key":"18_CR23","doi-asserted-by":"crossref","unstructured":"Petridis, P., et al.: State of the art in business games. Int. J. Serious Games 2(1) (2015)","DOI":"10.17083\/ijsg.v2i1.54"},{"key":"18_CR24","volume-title":"The Persona Lifecycle: Keeping People in Mind Throughout Product Design","author":"J Pruitt","year":"2010","unstructured":"Pruitt, J., Adlin, T.: The Persona Lifecycle: Keeping People in Mind Throughout Product Design. Elsevier, Amsterdam (2010)"},{"key":"18_CR25","unstructured":"Riedel, J.C., Hauge, J.B.: State of the art of serious games for business and industry. In: 2011 17th International Conference on Concurrent Enterprising, pp. 1\u20138. IEEE (2011)"},{"key":"18_CR26","unstructured":"Schaab, P., Beckers, K., Pape, S.: A systematic gap analysis of social engineering defence mechanisms considering social psychology. In: Proceedings of the 10th International Symposium on Human Aspects of Information Security & Assurance, HAISA 2016, Frankfurt, Germany, 19\u201321 July 2016 (2016)"},{"issue":"2","key":"18_CR27","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1108\/ICS-04-2017-0022","volume":"25","author":"P Schaab","year":"2017","unstructured":"Schaab, P., Beckers, K., Pape, S.: Social engineering defence mechanisms and counteracting training strategies. Inf. Comput. Secur. 25(2), 206\u2013222 (2017)","journal-title":"Inf. Comput. Secur."}],"container-title":["Lecture Notes in Computer Science","Computer Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-66504-3_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,23]],"date-time":"2025-12-23T01:03:29Z","timestamp":1766451809000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-66504-3_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030665036","9783030665043"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-66504-3_18","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"24 December 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Guildford","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Kingdom","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 September 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 September 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"25","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/esorics2020.sccs.surrey.ac.uk\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"366","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"72","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"20% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3,16","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"9,1","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"The conference was held virtually due to the COVID-10 pandemic.","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}